Breaking Wi-Fi security has been breached

[Jithin91]

WPA 2 security protocol may have been compromised..!
This is your Wi-Fi on KRACK

At 8AM Monday morning Eastern Time, researchers plan to reveal details of a new exploit called KRACK that takes advantage of vulnerabilities in Wi-Fi security to let attackers eavesdrop on traffic between computers and wireless access points. The exploit, as noted by Ars Technica, takes advantage of several key management vulnerabilities in the WPA2 security protocol, the popular authentication scheme used to protect personal and enterprise Wi-Fi networks.

The United States Computer Emergency Readiness Team issued the following warning in response to the exploit:

US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.

The proof-of-concept attack is called KRACK (Key Reinstallation Attacks). It’s thought that the site Krackattacks.com will disclose the vulnerabilities at 8AM EST / 5AM PST / 2PM CEST / 5:30PM IST on Monday. The flaws will also be the subject of a talk titled Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2 , which is set to take place at the Conference on Computer and Communication Security on November 1 and will be presented by security researchers including Mathy Vanhoef and Frank Piessens.

Via: The Verge

 

[Bapun]

WPA2 security in trouble as KRACK Belgian boffins tease key reinstallation bug

 

[abhisek]

Its time to launch WPA3

 

[christopher_pallante]

"it’s likely that you don’t have too many protocols relying on WPA2 security. Every time you access an https site – like this one – your browser is negotiating a separate layer of encryption. Accessing secure websites over WiFi is still totally safe. Hopefully – but there is no guarantee – you don’t have much information going over your network that requires the encryption WPA2 provides."

 

[Jithin91]

An exploit in Wi-Fi Protected Access II (WPA2) means it's open season on your Wi-Fi network, no matter what router you use. For years we've all depended on the WPA2 protocol to secure our Wi-Fi networks. That all comes to an end today.

This exploit may allow packet sniffing, connection hijacking, malware injection, and even decryption of the protocol itself. The vulnerability has been disclosed to the people who need to know these sorts of things early to find a fix

How to protect yourself from the KRACK WPA2 hack

• Avoid public Wi-Fi at all costs. This includes Google's protected Wi-Fi hotspots until Google says otherwise.
• Only connect to secured services. Web pages that use HTTPS or another secure connection will include HTTPS in the URL. You should contact any company whose services you use and ask if the connection is secured using TLS 1.2, and if so your connection with that service is safe for now.
• If you have a paid VPN service that you trust you should enable the connection full-time until further notice. Resist the temptation to rush and sign-up for any free VPN service until you can find out if they have been vetted and will keep your data secure.
• Use a wired network if your router and computer both have a spot to plug in an Ethernet cable. This exploit only affects 802.11 traffic between a Wi-Fi router and a connected device. Ethernet cables are relatively cheap and an eyesore strung across the carpet is worth it. Look for a Cat6 or Cat5e spec cable and there should be no configuration needed once plugged in.
• If you use a Chromebook or MacBook, use USB Ethernet adapter is plug-and-play.

This hack can't steal your banking information or Google password (or any data on a correctly secured connection that uses end-to-end encryption). While an intruder may be able to capture the data you send and receive, it can't be used or even read by anyone. You can't even read it unless you allow your phone or computer to decrypt and unscramble it first. An attacker may be able to do things like redirect traffic on a Wi-Fi network or even send bogus data in place of the real thing. This means something harmless like printing a thousand copies of gibberish on a networked printer or something dangerous like sending malware as a reply to a legitimate request for information or a file.

The best way to protect yourself is to not use Wi-Fi at all until you're directed otherwise***
WPA2 has had a long and fruitful life with nary a public exploit until today. Here's hoping the fix, or whatever comes next, can enjoy the same.

***This is not a Joke

 

[Jithin91]

KRACK Attacks: Breaking WPA2

 

[Bapun]

Wi-Fi Alliance® security update | Wi-Fi Alliance

 

[Jithin91]

The #KRACK WPA2 Wi-Fi vulnerability is hitting hard, some vendors already offering patches.
Check the list

• Arch Linux: WPA Supplicant patch, Hostapd patch
• Aruba
• Cisco Meraki
• DD-WRT
• Debian/Ubuntu
• Fortinet
• Microsoft
• MikroTik
• Netgear: WAC120, WAC505/WAC510, WAC720/730, WN604, WNAP210v2, WNAP320, WNDAP350, WNDAP620, WNDAP660, WND930
• Ubiquiti
• Watchguard Cloud

Vendors listed as "Not affected" on the CERT website

• Arista
• Lenovo
• VMWare

 

[Jithin91]

Microsoft releases statement on KRACK Wi-Fi vulnerability

In a statement to WC, a Microsoft spokesperson said the company released the security fix on October 10 as part of its regular Patch Tuesday updates. From Microsoft:

Microsoft released security updates on October 10th and customers who have Windows Update enabled and applied the security updates, are protected automatically. We updated to protect customers as soon as possible, but as a responsible industry partner, we withheld disclosure until other vendors could develop and release updates.

Good news for Windows machines, but the exploit is wide-ranging and impacts Android, iOS, macOS and Linux devices as well. If you're using any other devices, you'll want to make sure you're doing everything you can to mitigate the impact until all of your devices are patched.

 

[im_dude]

I think I read somewhere that to hack a WiFi, the hacker has to physically present near you to access the WiFi.I think that's a major relief.