WiFi WPA2 exploit

USAFRet

Illustrious
Moderator
Further:

https://www.theverge.com/2017/10/16/16484824/krack-wifi-encryption-bug-vulnerability-install-patch
"The good news is Krack is a wide but shallow bug: nearly every device that uses Wi-Fi is vulnerable, but the attack itself is difficult to execute and not as damaging as you might expect."


https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches
"While it looks like Android and Linux devices are affected by the worst part of the vulnerabilities, allowing attackers to manipulate websites, Google has promised a fix for affected devices “in the coming weeks.”"

"Apple also confirmed to both The Verge and AppleInsider that the vulnerability is patched in a beta version of the current operating systems. The fix should go public in a few weeks, so iOS and macOS devices aren't in the clear just yet."
 

USAFRet

Illustrious
Moderator


How bad?
http://www.zdnet.com/article/wpa2-security-flaw-lets-hackers-attack-almost-any-wifi-device/
A bad actor has to 1) be in WiFi range, and 2) a bit of social engineering
MS released the fix for it last week.
https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches

Solutions?
http://www.zdnet.com/article/here-is-every-patch-for-krack-wi-fi-attack-available-right-now/
 

USAFRet

Illustrious
Moderator
Further:

https://www.theverge.com/2017/10/16/16484824/krack-wifi-encryption-bug-vulnerability-install-patch
"The good news is Krack is a wide but shallow bug: nearly every device that uses Wi-Fi is vulnerable, but the attack itself is difficult to execute and not as damaging as you might expect."


https://www.theverge.com/2017/10/16/16481818/wi-fi-attack-response-security-patches
"While it looks like Android and Linux devices are affected by the worst part of the vulnerabilities, allowing attackers to manipulate websites, Google has promised a fix for affected devices “in the coming weeks.”"

"Apple also confirmed to both The Verge and AppleInsider that the vulnerability is patched in a beta version of the current operating systems. The fix should go public in a few weeks, so iOS and macOS devices aren't in the clear just yet."
 

ASK THE COMMUNITY