BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol

Donate

Welcome • User Guide
ToS • Privacy • Canary
Donate • Bugs • License

©2025 Poal.co

1.3K

•

BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol (www.securityweek.com)

Yet another old critical flaw that has been around for ages. Probably known by nation state actors for a while.

Archive: https://archive.today/o7Whl

From the post:

>The company published a technical description of what is being called the BlastRADIUS attack and warned that corporate networks such as internal enterprise networks, Internet Service Providers (ISPs), and Telecommunications companies (telcos) are exposed to major risk. The flaw was discovered by researchers at Boston University, Cloudflare, BastionZero, Microsoft Research, Centrum Wiskunde & Informatica and the University of California, San Diego.

Yet another old critical flaw that has been around for ages. Probably known by nation state actors for a while. Archive: https://archive.today/o7Whl From the post: >>The company published a technical description of what is being called the BlastRADIUS attack and warned that corporate networks such as internal enterprise networks, Internet Service Providers (ISPs), and Telecommunications companies (telcos) are exposed to major risk. The flaw was discovered by researchers at Boston University, Cloudflare, BastionZero, Microsoft Research, Centrum Wiskunde & Informatica and the University of California, San Diego.

(post is archived)

[–] • 2 pts

And the Fed wants to implement CBDCs and biometric IDs. LOL.

I'm sure nation state actors already had this exploit in their tool set long ago.

link

[–] • 1 pt

why consider old remote access protocol as, well, old? why bother upgrading to something better like DIAMETER as far as IAAA is concerned. RADIUS was broken the moment MAC spoofing was realized.

I have a better idea, let's just port all traffic over 23

link