Home Forums Discussions General Discussion WIFI WPA2 has been breached - Heads Up

The bottomline here is that unless you KNOW a device has been successfully patched, it can be breached, and I expect that crafted attacks will be in the wild soon.

The links and an excellent article that details the technical analysis is below.

What to do:
<>Patch your WIFI as soon as there is a patch
<>Consider taking down your WIFI until there is a patch
<>Assume that ANYTHING you send over your phone in high traffic areas (Airports, hotels, restaurants, etc) is being gathered.
<>Time to SERIOUSLY consider VPN access for your phone and/or private key hotspots.

This will get prompt attention from some vendors, but going forward, don't trust a device that you don't KNOW is successfully patched.

Excellent detailed analysis


Source news


Additional article that points out ...ings - appliances, wireless cameras, etc

So, what does this mean for our office wifi networks that we use for Amazing Charts? And thanks for posting!

Realistically, criminals are lazy, and are much more prone to attack busy target areas. There is a whole story about how they attack departing International flight passengers, but that is just an example.

Once there are examples, any low rent hacker will use it because it is like the "Master Key" in movies, except real.

I'm hoping that vendors step up and patch this quickly, but none of us control that, and it is an issue in the actual standard [makes you wonder ....] and how it is implemented.

Short term, the safe bet is get network drops put in where you need them, and get the speed benefit of going wired.

There are more complex solutions, but turning off WIFI is the safe, if inconvenient bet.

Time to consider a VPN on your phone, either to your office, or to a hosted environment.

The technology world globally just that much more dangerous today.

Indy,
Thanks for the post and links.
So from what I am reading, even if the router is patched with the WPA2 KRACK update, if other devices connected via WPA2 remain corrected to the network and are unpatched, then the network is not secure. Is that correct?

Here is the Csco confirmation that there a long list of vulnerable devices.

Some Vendors are already releasing patches.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa

From an attack surface perspective, securing the access point is the key.

If you have devices that aren't patched, then they are a risk in attaching to compromised networks, and then exposing banking credentials, patient data, etc.

Longer term, Docs need to implement VPNs to secure their network usage. Especially when traveling.

Just to add to the story:

Bleeping computer has list of manufacturers who have released patched firmware:
https://www.bleepingcomputer.com/ne...er-updates-for-krack-wpa2-vulnerability/

Our 2 Main vendors Mikrotik and Ubiquiti have already released patches. Lots of people use the Combo Modem/Router/AP's from their ISP. Those take forever to get updates.