So far 2017 hasn’t been a cyber-friendly year. Plenty of ransomware and cyber attacks made sure that 2017 will go down as one of the worst year for cybersecurity in the history. And just as you thought it might be over, another exploit has been discovered today and this time Wi-Fi networks are at stake.
As of 8 AM Monday Eastern Time, the most popular Wi-Fi security protocol WPA2 has been breached. A new exploit that goes by the name of KRACK is taking advantage of the vulnerabilities in Wi-Fi security to let attackers eavesdrop on traffic between computers and wireless access points. Once exposed, the hackers will be to control the network and inject malicious code into your device and do countless malicious activities. A team of researchers led by Mathy Vanhoef will be revealing the details of the exploit later today.
The US Computer Emergency Readiness Team has issued a warning for everyone using this protocol on their Wi-Fi networks.
US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.
It is still not clear as to how the hijacking can take place and how one can take measures to protect the routers but we have a standard checklist to make sure you’re at least safe for now. More details will be revealed later on today through the website krackattacks.com, before the vulnerabilities are formally presented on November 1st in a talk titled Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2 at a security conference in Dallas.
uhhh shit it's bad yup pic.twitter.com/iJdsvP08D7
— Owen Williams ⚡ (@ow) October 16, 2017
Some steps to make sure you’re protected against Wi-Fi attacks.
- Change your default username, password, and SSID if you haven’t changed them till now.
- Make sure that the firewall on both your router and PC is activated.
- Disable the visibility status of the SSID as it makes even harder for anyone to look for your WiFi. You will need to manually provide your unique SSID to your friends or family members in order to connect the devices to the Wi-Fi.
- Disable DHCP entirely.
- The routers are expected to receive the new updates in the next few hours, make sure you have them installed them as soon as they hit your router.
- The best protection, if possible is to use Rj-45 cable and directly connect your laptop/PC to the router like a traditional Broadband connection.