Zero-Click MediaTek Bug Opens Phones, Wi-Fi to Takeover
Critical-rated CVE-2024-20017 allows remote code execution (RCE) on a range of phones and Wi-Fi access points from a variety of OEMs.
Wireless security covers risks in Wi-Fi, Bluetooth, and cellular connections, including unauthorized access, eavesdropping, and device compromise.
Search across headline titles and summaries.
Background for this topic.
Wireless systems transmit data over radio or other electromagnetic links rather than a physical cable, including Wi-Fi, Bluetooth, cellular, and many IoT protocols. The tag usually covers the security of these protocols, access points, client devices, and radio-enabled equipment—not every use of the word “wireless.”
Because signals can extend beyond controlled spaces, an attacker within range may capture traffic, attempt unauthorized association or pairing, impersonate a legitimate access point, or disrupt service through interference. Encryption alone does not prevent these attacks: use secure authentication, current protocol configurations, protected management interfaces, and segmentation between wireless clients and sensitive networks. Track firmware and protocol vulnerabilities, remove obsolete security modes, monitor for rogue devices and unusual associations, and review wireless logs during investigations. Bluetooth and IoT deployments also require attention to default credentials, discoverability, and unnecessary exposed services.
Critical-rated CVE-2024-20017 allows remote code execution (RCE) on a range of phones and Wi-Fi access points from a variety of OEMs.
D-Link has fixed critical vulnerabilities in three popular wireless router models that allow remote attackers to execute arbitrary code or access the devices using hardcoded credentials. [...]