Thursday, August 11, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Featured

WiFi WPA2 Encryption Cracked; Android Devices Particularly Vulnerable

by Vijandren
October 16, 2017
372
SHARES
Share on FacebookShare on Twitter

Just to add on to your Monday morning blues, WPA2 (Wi-Fi Protected Access 2), which is the de-facto encryption method used by the majority of Wi-Fi routers around the world, is rumored to have been cracked.

While the actual exploit, called KRACK – short for Key Reinstallation AttaCK, has yet to be released, developers who have reviewed the flaw have confirmed that it is serious and could have widespread implications around the globe.

WiFi traffic between your computer, mobile phone and even right down to your CCTV cameras are encrypted to ensure that nobody else is able to intercept the data while it is transmitted. This is especially critical when sensitive data (for example, passwords) are passed from your device to the sites where it is intended to go.

Fortunately, most sites that handle sensitive data these days run on HTTPS, which means that on top of the WiFi encryption, the data is also encrypted again via a certificate unique to each site.

This is a core protocol-level flaw in WPA2 wi-fi and it looks bad. Possible impact: wi-fi decrypt, connection hijacking, content injection. https://t.co/FikjrK4T4v

— Kenn White (@kennwhite) October 15, 2017

ADVERTISEMENT

However, there are still millions of sites and services online which are still running on the non-secure HTTP protocol, and a broken WPA2 encryption protocol could essentially allow someone with enough knowledge of the flaw to intercept and decipher all traffic flowing through that particular WiFi network.

US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.

According to Mathy Vanhoef, who disclosed the vulnerabilities earlier today, the attack works against almost all unpatched WiFi networks currently being deployed around the world, and Android devices are notably vulnerable to an “exceptionally devastating” variant of the Wi-Fi attack.

The exploit itself is patchable by router manufacturers, but at this point in time, only Mikrotik seems to have rolled out a patch for vulnerabilities which first came to light in early August.

The researches also caution against switching to WPA or WEP as these protocols have even less security compared to WPA2. They recommend continuing to use WPA2 until patches are delivered.

For more information, this FAQ on the vulnerability by Aruba Networks is a recommended read – especially if you’re a System or Networks Administrator in charge of networks that require immediate attention.

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

Tags: EncryptionExploitkrackWiFiwpa2
Updated 12:19 am, Tue, 17 October 17
Back to top
Share149Tweet93SendShare

ADVERTISEMENT

RELATED ARTICLES

Huawei MatePad 2022 WiFi Malaysia price
Tablets

WiFi Version Of Huawei MatePad 2022 Now Available Locally For RM 1,299

by Heirul Kamel
July 5, 2022
opensea nft exploit bug nfts
Cryptocurrency

OpenSea Exploit Let Attackers Score Rare NFTs At Below Market Prices

by Heirul Kamel
January 25, 2022
Facebook Messenger end-to-end encryption video voice calls update
Social Media

Meta Reportedly Delays Full Encryption For Messenger And Instagram To 2023

by Heirul Kamel
November 22, 2021
unifi
ISP

Get Internet Network Coverage Throughout Your House With These Tips By unifi

by Ian Chee
November 17, 2021
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    Apps

    WhatsApp Is Giving You Two Whole Days To Delete Messages

  2. 2
    Fintech

    Maybank Apple Pay Page Is Now Live [UPDATED]

  3. 3
    Fintech

    Apple Pay Finally Arrives In Malaysia: Supports Maybank, AmBank, and Standard Chartered

  4. 4
    Laptops

    2022 Acer Swift 5 Lands In Malaysia With New Design and 12th Gen Intel Core

  5. 5
    Fintech

    Apple Pay Signage Appears At Maxis Centre And Website (UPDATED)

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.