Extensive Vulnerability Discovered with WIFI WPA2 Security
Click here to post a comment for Extensive Vulnerability Discovered with WIFI WPA2 Security on our message forum
ubercake
KRACK ATTACK!
Biffo
Routers under Windows will be safe against this exploitation since most lock up for 24hrs after so many failed attempts plus no hacker gonna wait around for months or years till all the keys are decrypted.
sammarbella
rl66
schmidtbag
Unlike OS or software specific security issues, this is not something that should be made widely known. Most people who use WPA2 are not able to opt for something else or update their device in a useful way. So, I feel like Vanhoef and Piessens have just put waaaay more people at risk than they were before their discovery.
Think of it like this:
Imagine someone brings a backpack with a bomb in it in a shopping mall, and just leaves the backpack in the middle of the mall. Then an announcement is made that this backpack has a weapon in it. By letting everyone know that there is something deadly in that backpack, it dramatically increases the probability of someone with malicious intent from using it, possibly before security can diffuse the situation. If the announcement was never made, sure, somebody would've figured it out eventually, but the probability of the weapon being used would be dramatically decreased.
So the fact of the matter is, the situation was insecure no matter what, but because an announcement was made, that just made things a whole lot worse.
GlennB
schmidtbag
Noisiv
How about... explicitly define allowed devices via MAC address.
Not practical in a large network, but good fix for home/personal use.
JJayzX
Noisiv
schmidtbag
Noisiv
HeavyHemi
Krack is whack!
Athlonite
Oh great lets put out a video showing any wood-be hacker how it's done a simple there's a security problem with WPA2 and you'll need to update your device when a fix is availably statement would have sufficient
geogan
geogan
Anyway let me play devil advocate here...
TBH that Krack "attack" to me is just another way for the government agencies to trick or frighten users into updating all the routers in existence with their latest "approved" firmware which is loaded with their own backdoors and snoops. IMO it is better to have a 1% chance of some lonely hacker deciding he wants to try and get into your network than 100% chance you now have installed the NSAs latest backdoor entry toolkit on your router... i'm keeping my own 6 year old router firmware to keep NSA out...
Noisiv
schmidtbag
Athlonite
well The just aswell my Router is German made then they'll just tell the NSA nein friggin zee firmwarez
geogan