Announcement

Collapse
No announcement yet.

Major vulnerability in WiFi's WPA2 found

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • TampIt
    replied
    As a guy who founded an IS company that designed over 2000 WAN's, it may surprise you guys that I have NOTHING on any wireless, even my video surveillance cameras are hard wired in. For anyone who fully understands TCP/IP and the transport protocols the reason is obvious. Never found a wireless I couldn't walk through, and compared to the hacker convention guys my skills in hacking are at the Sesame Street level (if even that high).

    My smartphone has all 'net turned off and I am probably going to spend $81 and go back to the "dumb Nokia" as the Android OS is a PITA and I am well past tech that annoys - the damn thing nags me daily to update programs I do not use or want. Reminds me of my mates 2015 Mazda 6 - shudder - the one we nicknamed Mrs Nag.

    Several ex-clients of mine who had their surveillance systems converted to wireless got hacked & burgled (doh!) and returned to be hard wired again. So much easier to nail down the security.

    Meanwhile the world spends more power on unneeded wireless than most African countries consume... Just so some idiot without a memory can act like a "google hero" at a cafe. Energy crisis? What energy crisis?

    TampIt

    Leave a comment:


  • matth3wh
    replied
    Thankfully Microsoft seem to be ahead of the curve on this one... patched on 10th October.

    Hang on, I'm currently using a Mac. Doh! - Coming soon though...

    "The exploits have been addressed in the iOS, tvOS, watchOS, and macOS betas that are currently available to developers and will be rolling out to consumers soon."

    Fair few Ubiquiti wireless access points to patch at work.

    Leave a comment:


  • Javaphile
    replied
    Thank me now and then thank me a 2nd time once you're patched?


    Java "Passing it on" phile

    Leave a comment:


  • 338
    replied
    Thanks Javaphile, don't know if I should thank you or curse you for giving me one more thing to worry about ��

    Leave a comment:


  • flynnaus
    replied
    Interesting and concerning. I wonder if this means the return of warchalking to exploit this vulnerability?
    Hopefully equipment suppliers will be quick to release patches (apparently Apple has already done so).
    In the meantime ...
    https://techcrunch.com/2017/10/16/he...vulnerability/

    Leave a comment:


  • Javaphile
    started a topic Major vulnerability in WiFi's WPA2 found

    Major vulnerability in WiFi's WPA2 found

    We discovered serious weaknesses in WPA2, a protocol that secures all modern protected Wi-Fi networks. An attacker within range of a victim can exploit these weaknesses using key reinstallation attacks (KRACKs). Concretely, attackers can use this novel attack technique to read information that was previously assumed to be safely encrypted. This can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on. The attack works against all modern protected Wi-Fi networks. Depending on the network configuration, it is also possible to inject and manipulate data. For example, an attacker might be able to inject ransomware or other malware into websites.
    Full article can be read here.


    Java "Things that make you go Hhhmmmm..." phile
Working...
X