Funny aside, there has been a wide spread concern in about month relating to what matters to most of the main stream users’ daily lives – “wifi” connection.
What is “KRACK”?
Simply put that the core wifi encryption “WPA2” protocol has a vital flaw in it that can let hackers tweak already used keys to be re-installed into the new handshakes which are carried out between Wi-Fi routers and devices connecting to them. Basically, hackers will be able to manipulate data and interpret messages you between devices. Still not so sure what’s going on? … well… the “KRACK” vulnerability let hackers be able to clone a (fake) wifi router so … instead of the real wifi router you are supposed to connect, you will be connect to the fake malicious wifi router that has been operated by the hacker. From the point on, your internet activities will be able to be interpreted by the hacker.
Wanna know more? Click here to read more from https://www.krackattacks.com/.
Microsoft, Apple, and Google have released the fix.
Microsoft released security updates on October 10th and customers who have Windows Update enabled and applied the security updates, are protected automatically. We updated to protect customers as soon as possible, but as a responsible industry partner, we withheld disclosure until other vendors could develop and release updates.
Available for: iPhone 5s and later, iPad Air and later, and iPod touch 6th generation
Impact: Processing a maliciously crafted text file may lead to an unexpected application termination
Description: A denial of service issue was addressed through improved memory handling.
CVE-2017-13849: Ro of SavSec
Security patches for the KRACK vulnerabilities are provided under the 2017-11-06 security patch level
For all the wifi routers, they should be installing fix patches but it’s going to be difficult for main stream consumers to get this done. First, a huge array of different routers out there in the market. That means all those different model routers will need to install fixes. Manufacturers aren’t going to be able to do it. Second, even if all router manufacturers are able to do so, there are just too many old routers that are still being used by so many people… and those routers are most likely not going to receive those patches since … they are already obsolete from the market.
What You Should Do?
Install patches on all your devices including your laptops, desktops, smartphones, tablets, and all your Internet of Things if possible. Heading to Apple, Google, and Microsoft websites for detailed information about how to patch the fix now.