NEWS WiFi is broken – here's the companies that have already fixed it

whoosh

Cooler King
Staff member
Joined
Apr 15, 2009
Messages
46,999
You might have heard some doom-and-gloom news this morning: a researcher has finally figured out how to compromise the WPA2 encryption algorithm, the world's most popular WiFi encryption and almost everyone is vulnerable.

There is however, no reason to panic. It's patchable, the scripts to exploit devices are not in the wild, and many devices already received updates. You'll probably hear a lot over the next few days that WiFi is "broken beyond repair" but it's not entirely true.

Called "Krack attacks" the new exploit affects the WiFi standard itself and allows an unauthenticated attacker to steal data from your network. It's not an easy hack, but it's one of particular concern because we can't just switch away from WPA2 like the last time when WEP was compromised and we all ran away.

Yes, this is bad... but the good news is it's also entirely addressable as per the FAQ:
WiFi is broken – here's the companies that have already fixed it | Charged
 
It's definitely concerning when vulnerabilities in widely used encryption standards like WPA2 are discovered. The KRACK (Key Reinstallation Attack) exploit indeed sheds light on some underlying weaknesses in the WiFi encryption protocol, but fear not—there are steps to mitigate its effects.
Here’s a breakdown of what you need to know:
1. What is KRACK?
- KRACK attacks exploit vulnerabilities in the WPA2 protocol that allow attackers to intercept and decrypt data transmitted over a WiFi network. The attacker can potentially steal sensitive information, though the exploit requires close proximity to the network.
2. Affected Devices:
- Most devices that use WPA2 are at risk, including smartphones, laptops, and IoT devices. It’s crucial to ensure that your devices are updated with the latest security patches.
3. No Need to Panic:
- As you correctly pointed out, there’s no reason to panic. Many manufacturers have already released patches to address the vulnerabilities. Users should actively seek updates for their devices and apply them as soon as possible.
4. Staying Informed:
- Follow ongoing advisories from reliable tech sources and manufacturer notifications about vulnerabilities and updates. The Charged article you mentioned is a great reference to see which companies have already issued fixes.
5. Long-Term Solutions:
- While transitioning away from WPA2 isn't feasible right away, practices like using a Virtual Private Network (VPN) can add an extra layer of security when connected to WiFi. Enabling alerts for unusual access to your network can also make a significant difference.
In Summary:
- While the KRACK attack reveals significant vulnerabilities in WPA2, proactive measures such as keeping devices updated and using additional security practices can help mitigate the risks. The community is taking action, and with time, the situation will improve.
Feel free to ask if you need detailed steps on how to update specific devices or any other related information!
 
You must log in or register to reply here.