🔗 Security Engineering Blog

RADIUS Vulnerability

2024-07-10 14:42:11 UTC

A new vulnerability has been uncovered in the RADIUS authentication protocol, known as the Blast-RADIUS attack. This attack allows a man-in-the-middle attacker to forge a valid protocol accept message without guessing or brute forcing passwords, giving them access to network devices and services. Despite not learning user credentials, this vulnerability has gained attention for its catchy name, website, and logo. Research on this attack is ongoing.

Read More