How to stay safe from Spark's Wi-Fi fault

Todd Singleton
October 18, 2017

Security teams should take inventory of devices on their networks that could be affected by this far-reaching attack patch accordingly.

Attackers may also be able to use the vulnerability, which is being called Krack (Key Reinstallation AttaCK), to "inject and manipulate data", such as by infecting a website with ransomware or other malware, the report says. Customers who apply the update, or have automatic updates enabled, will be protected.

In the meantime, avoid connecting to public Wi-Fi networks.

REUTERS/PAWEL KOPCZYNSKIA Wi-Fi supporting mobile phone using the connection in a Boeing 737-800 at Berlin Schoenefeld Airport could be vulnerable to a KRACK attack based on a research from Belgium's Katholieke Universiteit Leuven.

Finnish security firm F-Secure said experts have always been cautious about Wi-Fi's ability to withstand security challenges of the 21st century.

According to the Wi-Fi Alliance, the issue can be resolved through software updates, and the software industry has already started providing patches to improve WPA2 encryption.

Philippine military focused on hostage safety
DNA tests will be carried out on the two bodies because of the reward offer from the USA and Philippine governments, Lorenzana said.

Kirkuk: What you need to know about the Kurdish-Iraqi dispute
It has always been at the center of disputes between Baghdad and the autonomous Kurdistan Regional Government (KRG). It pitted members of the Patriotic Union of Kurdistan against Turkmen loyal to Shiite political groups ruling Iraq.

John Kelly backtracks after saying that he runs the country
White House Chief of Staff John Kelly takes questions while addressing the daily briefing at the White House on Thursday. Kelly's military approach grates on the president as much as the president's improvisational style riles Kelly.

Linux and Android 6.0 and above are at greater risk of having their data decrypted as they can be tricked into installing encryption keys. "If your device supports Wi-Fi, it is most likely affected." So.

KRACK requires the hacker to be in range of a target's Wi-Fi, so it can't be done remotely.

Now since the vulnerability is so widespread, tech giants will have to speed up the patch process and issue updates to their users as soon as possible. Meanwhile, a patch is coming for recent Apple devices in the next few weeks while Linox patches already out or coming soon.

Kuskov explained that in order to decipher traffic, an attacker would simply need to bring his computer within range of the targeted Wi-Fi network and run special software. And you can watch the video above for additional information. All you can do is wait for security updates for your devices.

As I've previously written, the padlock indicates that traffic to and from a site is encrypted - via the HTTPS protocol- which basically means no one but that site can read any sensitive information you share. "Users can expect all their Wi-Fi devices, whether patched or unpatched, to continue working well together", the statement said. At present, not much will be achieved by changing the Wi-Fi password.

Other reports by Free-Prsite

Discuss This Article