Skip to main content
  1. Home
  2. Web
  3. News

Hide your kids, hide your Wi-Fi! Vulnerability found in WPA2 encryption

Dyllan Furness
By

krack wi fi hack computer padlock
TheDigitalWay/Pixabay
Hackers can access all modern Wi-Fi networks through a crack in the wireless security protocol WPA2, according to new research published on Monday from the University of Leuven (KU Leuven) in Belgium.

The Wi-Fi hack — aptly named KRACK (Key Reinstallation AttaCK) — means the vast majority of devices and wireless internet traffic are potentially susceptible to malicious attacks and eavesdropping. If your device supports Wi-Fi, it is probably affected, warns Mathy Vanhoef, the KU Leuven security expert who discovered the weakness.

Recommended Videos

“Attackers can use this novel attack technique to read information that was previously assumed to be safely encrypted,” Vanhoef wrote in his report. “This can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on. In general, any data or information that the victim transmits can be decrypted. Additionally, depending on the device being used and the network setup, it is also possible to decrypt data sent towards the victim (e.g. the content of a website).”

Related

No, Mom, this isn’t the end of the internet. But it does mean we’ll need to update our devices as soon as possible.

In the wake of the WPA2 #Wifi vulnerability announcement, we're taking a poll. How do you protect your wifi network? https://t.co/D8Mt2OEr2H

— Digital Trends (@DigitalTrends) October 16, 2017

Many websites today run an additional level of security beyond WPA2 (note the padlock icon next to our URL in your Web browser’s address bar) so personal info passed through these sites is private. Websites without that padlock should be seen as open to the public until KRACK is patched.

There’s also a level of physical security in that a would-be hacker has to be within proximity of the network. We’re not all suddenly exposed to the everyone internet.

According to the report, KRACK affects Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and other operating systems. Some have released patches to address the vulnerability.

Recognizing how widespread the vulnerability was, Vanhoef and his team informed the United States Computer Emergency Readiness Team (CERT) who notified all susceptible vendors on August 28, 2017.

“We’re aware of the issue, and we will be patching any affected devices in the coming weeks,” Google told The Guardian.

“We have released a security update to address this issue. Customers who apply the update, or have automatic updates enabled, will be protected,” Microsoft said.

Security standards have been hacked in the past but this time there’s no new, more secure, and widespread standard to fall back on. So don’t freak out, but be cautious — check for padlocks in your browser’s address bar, update your devices ASAP, and, for god’s sake, use a VPN.

Editors' Recommendations

Topics
Dyllan Furness
Dyllan Furness
Contributor
Dyllan Furness is a freelance writer from Florida. He covers strange science and emerging tech for Digital Trends, focusing…
What is Wi-Fi 7: Everything you need to know about 802.11be
Checking a Wi-Fi router and internet connection on a phone.

Wi-Fi 7 is the latest evolution in the 802.11 IEEE standard of wireless networking, and it's the direct sequel to Wi-Fi 6 and Wi-Fi 6E. It's faster, offers improved support for a greater number of simultaneous connections, and will be more adaptable, to better maintain low-latency connections. It will be an excellent solution for streaming ultra-high-definition video to multiple devices simultaneously, and may find use in future wireless virtual reality and augmented reality headsets.

There aren't many Wi-Fi 7 devices or routers available just yet, but a soft launch has already begun in China, and that rollout will gather sped in the coming years. To get you ready for the next generation of Wi-Fi technology, here's everything you need to know about Wi-Fi 7.

Read more
These are the airports that actually have really fast public Wi-Fi
MacBook Air sitting on a table in an airport.

With the holiday travel season quickly approaching, there is expected to be an increased number of travelers at airports across the U.S., and therefore significantly more people attempting to connect to free airport Wi-Fi at the same time.

Stable connections for free Wi-Fi hot spots can be a hassle in any location, but airport travel offers a unique situation, where internet speed options can vary depending on whether they are free or paid, or a perk of another subscription service.

Read more
Google Nest Wi-Fi Pro adds Wi-Fi 6E but loses compatibility
Google Nest Wi-Fi Pro in Lemongrass color rests on a shelf.

Google just released a new Wi-Fi router, the Nest Wi-Fi Pro, as part of its ongoing efforts to make it quicker and easier to watch videos on YouTube, do a Google search, or connect to your Nest smart home devices. Without reliable internet access, that Google-y goodness might not be available. It's also more eye-catching than earlier models and up to twice as fast but there are a few concerns with this new mesh router.

Nest Wi-Fi pro adds the latest wireless standard, Wi-Fi 6E, which has three bands instead of the usual two. That means the Nest Wi-Fi Pro can connect to older devices at 2.4 and 5 GHz, as well as newer technology using the latest 6GHz radio frequency band.

Read more