WiFi hacked - no longer for sure - Microsoft says Windows is up to date

Microsoft | Oct 25, 2017 | Master3395

Android especially exposed.

WPA and WPA2, the encryption that will make sure that you connect securely to a WiFi network are hacked down and together.

Updated, 18:20:

This reports Telenor's security center, TSOC, about the error:

"A security researcher at the Belgian university KU Leuven has released details about a weakness that partially violates the security of the WPA2 protocol.

The attack takes advantage of the way WPA2 handles nouns or random cryptographic numbers. These numbers should initially only be used once, but the implementation allows these to be reused. The method has been named KRACK (Key Reinstallation Attack).

Both routers, mobile phones and PCs are vulnerable. It is imidlertidimum clients that are most vulnerable. To avoid being exploited, one can use VPN when using a WiFi network. 4G connections are also not vulnerable. "

Updated, 18:13:

Also Macs and iOS devices are subject to the attack method, but iOS is only exposed to one of the techniques. We await information about updates to iOS and macOS.

Updated, 18:10:

"The Wi-Fi Alliance" has thanked Vanhoef for the work and announces updates now, as the gap can be sealed with software updates:

"The error can be corrected with a simple software update. The WiFi industry, along with leading platform vendors, has already started rolling out bug fixes. Users can expect that WiFi devices, corrected or not, will work together in a good way. "

The organization claims there is no evidence that the hole is abused for malicious attacks.

Very serious
All platforms can be attacked, in other words, all information transmitted over secured WPA2 networks can be read. WPA2 is standard encryption on routers, both at home and on public networks.

Android 6 and later, including Linux, are extra prone because the two are very easy to attack. The error, discovered by Mathy Vanhoef, describes it as "trivial" to snap up information from Android 6 or later.

Microsoft has corrected
Microsoft reports that they have already corrected the problem in supported Windows versions, but it is uncertain which update contains the fix, so we're unsure what versions are talking about. There will be more information later, promising the company.

"We have released a security update addressing this issue," explains a Microsoft spokesman for The Verge.

Google comes with update
Google reports that a malfunction will occur in the coming weeks to vulnerable devices. The Pixel devices will first receive the security update dated November 6, 2017.

Security experts claim 41 percent of Android devices are exposed. It will no doubt take time to update older devices, as Android is very fragmented.

Keywords: security, wifi

Sources: The Verge, Wi-Fi.org

Author: Master3395


comments powered by Disqus

Page 1 of 406  >  >>

Visa, MasterCard and Uber invest in Facebook's crypto currency


Jun 18, 2019 | Category: General | Comments

May be announced next week.

read more…

Google boss annoyed at Apple


Jun 17, 2019 | Category: IT | Comments

Think they are portrayed as corrupt during the unveiling of "Sign in with Apple".

read more…

Telegram exposed to massive DDoS attacks - claims China is behind


Jun 16, 2019 | Category: General | Comments

Linked to the demonstrations in Hong Kong.

read more…

Page 1 of 406  >  >>