December 22, 2024
WPA2 Wi-Fi Security Cracked [Video]

WPA2 Wi-Fi Security Cracked [Video]

Posted October 16, 2017 at 2:34pm by iClarified
Security researcher Mathy Vanhoef has cracked WPA2, the security protocol used to protect most modern Wi-Fi networks.

Using key reinstallation attacks (KRACKs), attackers can use Vanhoef's technique to read information that was previously assumed to be safely encrypted and steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on.

The weaknesses are in the Wi-Fi standard itself, and not in individual products or implementations. Therefore, any correct implementation of WPA2 is likely affected. To prevent the attack, users must update affected products as soon as security updates become available. Note that if your device supports Wi-Fi, it is most likely affected. During our initial research, we discovered ourselves that Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and others, are all affected by some variant of the attacks.


Vanhoef notes that the attack is not limited to recovering login credentials. Any data or information being transmitted can be decrypted. Additionally, its also possible to decrypt data sent towards the victim. Even if a website is using HTTPS, he warns that the extra layer of protection can be bypassed in a 'worrying number of situations'.

Since submitting the paper for review on May 19, 2017, Vanhoef has found easier techniques to carry out the key reinstallation attack against the 4-way handshake.

With our novel attack technique, it is now trivial to exploit implementations that only accept encrypted retransmissions of message 3 of the 4-way handshake. In particular this means that attacking macOS and OpenBSD is significantly easier than discussed in the paper.

To prevent this type of attack, your devices will need to be updated. Changing the password of your Wi-Fi network does not prevent (or mitigate) the attack; rather, make sure all your devices are updated and update the firmware of your router.


Take a look at the video below for a demonstration of the attack. You can also hit the link below for a detailed look at how the attack works.

Read More


Add Comment
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
iClarified Icon
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Yes
No
Comments (3)
You must login or register to add a comment...
Kk
Kk - October 17, 2017 at 1:03pm
This is so scary!
D4xM4Nx
D4xM4Nx - October 17, 2017 at 6:59am
Keep an eye for updates either via your ISP, or browsing for the correct file at the routers' BIOS settings.
1
Eliot11
Eliot11 - October 16, 2017 at 6:08pm
This is the most critical vuln ever !! damn !
Recent. Read the latest Apple News.
RECENT
Tutorials. Help is here.
TUTORIALS
Where to Download macOS Sequoia
Where to Download macOS Ventura
AppleTV Firmware Download Locations
Where To Download iPad Firmware Files From
Where To Download iPhone Firmware Files From
Deals. Save on Apple devices and accessories.
DEALS