Great Moto G Stylus deal on Amazon!
Last chance to snatch the perfect Mother's Day gift at a discount and get it in time for her holiday!
Last chance to snatch the perfect Mother's Day gift at a discount and get it in time for her holiday!

Newly discovered Wi-Fi security protocol vulnerability leaves most consumers' traffic open to eavesdropping

By
2comments

The Wi-Fi Protected Access II protocol - the de-facto standard for consumer Wi-Fi security - is vulnerable to an attack that allows malicious hackers to eavesdrop on Wi-Fi traffic.

The exploit is called KRACK, short for Key Reinstallation Attacks, and it works by affecting the four-way handshake used to establish a key for traffic encryption. The attack happens at the third step of the process when a key can be resent multiple times and when resent in a certain way, a cryptographic nonce can be reused so that the whole security operation is compromised.

US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.

The whole research around the KRACK has been kept a secret in the past weeks, right before the scheduled public announcement at 8am ET on Monday.

Some companies like Aruba and Ubiquiti that sell wireless access points (WAPs) to the government and other large parties have already updates that patch this exploit, but the overwhelming majority of WAPs will be patched much later, and many will not be patched at all.

With this in mind, HTTP website traffic becomes exposed, but you can still have a secure browsing experience if you visit HTTPS only websites.

source: Ars Technica
https://m-cdn.phonearena.com/images/users/62-200/Victor-H.jpg
Victor Hristov Mobile Tech Review Journalist
Victor, a seasoned mobile technology expert, has spent over a decade at PhoneArena, exploring the depths of mobile photography and reviewing hundreds of smartphones across Android and iOS ecosystems. His passion for technology, coupled with his extensive knowledge of smartphone cameras and battery life, has positioned him as a leading voice in the mobile tech industry.

Featured Stories

Grab this free 4K Snapdragon-inspired wallpaper collection!
Grab this free 4K Snapdragon-inspired wallpaper collection!
New Moto G Stylus lands as a $400 S24 Ultra alternative
New Moto G Stylus lands as a $400 S24 Ultra alternative
Instead of getting thinner, the upgrade iPads need is better oleophobic coating
Instead of getting thinner, the upgrade iPads need is better oleophobic coating
Can dumb phones be the cure for smartphone addiction?
Can dumb phones be the cure for smartphone addiction?
Loading Comments...

Popular stories

T-Mobile customers can breathe a sigh of (temporary) relief as unwelcome change delayed
T-Mobile customers can breathe a sigh of (temporary) relief as unwelcome change delayed
4 billion Android users who downloaded apps flagged by Microsoft need to take some actions to stay safe
4 billion Android users who downloaded apps flagged by Microsoft need to take some actions to stay safe
Researcher answers the age-old question: which platform is more secure, iOS or Android?
Researcher answers the age-old question: which platform is more secure, iOS or Android?
Prices for the Motorola Edge (2022) remain too good to be true on Amazon
Prices for the Motorola Edge (2022) remain too good to be true on Amazon
Check the list to see if your OnePlus device is eligible to receive OxygenOS 15
Check the list to see if your OnePlus device is eligible to receive OxygenOS 15
T-Mobile makes it easier for owner of Galaxy S24 and some Motorola phones to ditch their carriers
T-Mobile makes it easier for owner of Galaxy S24 and some Motorola phones to ditch their carriers

Latest News

Best Pixel 8a deals: Top pre-order deals to check out
Best Pixel 8a deals: Top pre-order deals to check out
At 53% off, Soundcore Liberty 3 Pro are dirt cheap and a total bargain for anyone on a budget
At 53% off, Soundcore Liberty 3 Pro are dirt cheap and a total bargain for anyone on a budget
SEGA and Rovio, makers of Angry Birds, announce new multiplayer Sonic game
SEGA and Rovio, makers of Angry Birds, announce new multiplayer Sonic game
Woot's massive 57% discount on the premium Sennheiser MOMENTUM True Wireless 3 earbuds is back with a bang
Woot's massive 57% discount on the premium Sennheiser MOMENTUM True Wireless 3 earbuds is back with a bang
The high-end AirPods Max enjoy a rare $99 price cut at Amazon, only for a limited time
The high-end AirPods Max enjoy a rare $99 price cut at Amazon, only for a limited time
Unboxing roulette: Apple Pencil Pro comes in five unique box designs
Unboxing roulette: Apple Pencil Pro comes in five unique box designs
FCC OKs Cingular\'s purchase of AT&T Wireless