UPDATE – Microsoft, Ubuntu, Debian, Fedora, and others have all released updates to address the WPA2 KRACK vulnerability. See the bottom of this page for more info.
The WPA2 security protocol for wireless networks has been compromised. This means that the wireless connections on your home network are insecure. Since most people assume that their home network is secure they enable a lot of things such as file sharing without passwords.
With the current compromise of WPA2 people can tap into traffic on your home wifi network.
Orphaned devices may never be updated by manufacturers. Now’s a good time to watch very carefully and see how the various manufacturers and equipment/service providers respond. Many only want to be responsible for the devices they sell up the the point of acquisition by consumers, leaving people screwed. Others will be responsible and try to provide immediate updates.
UPDATE
Microsoft is the has already addressed the vulnerability as of their October 10th update release. Run Windows Update immediately and you should be ok. The KRACK wifi vulnerability was fixed with their October 10 update release.
Debian, Ubuntu, Fedora, Arch, and other Linux distros have now released updates.
Netgear has made an announcement stating that their wireless routers are only vulnerable if set to bridge mode, which is not the default mode for the vast majority of users.
I predict Android will be a disaster with this as per usual unless you have a flagship device that’s less than a year or so old.
People will also be screwed with things like printers. I doubt companies like Canon or HP are going to release firmware patches for the vast majority of their printers and scanners.
Leave a Reply