Security Bulletin: Fragmentation and Aggregation Attacks (FragAttacks) Wi-Fi Vulnerability

A new Wi-Fi security vulnerability called “fragmentation and aggregation attacks” (FragAttacks) has been detected. FragAttacks is an attack against Wi-Fi infrastructure and clients, rather than against any specific wireless network. It can be used to attack unpatched Wi-Fi equipment due to design flaws in Wi-Fi. We recommend that you ensure your equipment and device patching is current and that you have a CAT profile available for your users from: https://cat.eduroam.org

This is not a service affecting issue; eduroam authentication infrastructure will continue to function normally and login credentials continue to be securely transmitted when configured properly.