Serious weakness detected in WPA2, the universal Wi-Fi network encryption protocol

Android, Linux and OpenBSD users are vulnerable to hackers who can steal credit card numbers, passwords, emails and other encrypted data by exploiting a bug that was discovered recently in vulnerable personal devices or wireless access points

A closely guarded secret research has disclosed the existence of an exploit called KRACK, an acronym for Key Reinstallation Attacks, that targets the core WPA2 protocol. This bug allows an attacker to gain unauthorised access to your network, if they are within your Wi-Fi’s range and steal personal and confidential data that you presume to be secure.

Though effective primarily against open source systems like Android, Linux and OpenBSD, it is known to affect macOS and Windows systems to a much lesser extent. Any device that uses WPA2 to encrypt data is vulnerable. Additionally, depending on the network configuration, it may be possible for the attacker to inject ransomware or malware and manipulate data.

Major technology companies like Microsoft, Cisco, Apple as well as other affected vendors have released or are in the process of releasing security patches.

Continue reading.


Comments are closed.