Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News Editorials & Other Articles General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Eugene

(62,736 posts)
Mon Oct 16, 2017, 06:37 PM Oct 2017

Here's every patch for KRACK Wi-Fi vulnerability available right now

Source: ZDNet

Here's every patch for KRACK Wi-Fi vulnerability available right now

Vendors are reacting swiftly to a vulnerability that lets attackers eavesdrop on your network traffic.

By Charlie Osborne and Zack Whittaker for Zero Day | October 16, 2017 -- 16:55 GMT (09:55 PDT) | Topic: Security

Monday morning was not a great time to be an IT admin, with the public release of a bug that effectively broke WPA2 wireless security.

As reported previously by ZDNet, the bug, dubbed "KRACK" -- which stands for Key Reinstallation Attack -- is at heart a fundamental flaw in the way Wi-Fi Protected Access II (WPA2) operates.

The security protocol, an upgrade from WEP, is used to protect and secure communications between everything from our routers, mobile devices, and Internet of Things (IoT) devices, but there is an issue in the system's four-way handshake that permits devices with a pre-shared password to join a network.

-snip-

US-CERT has known of the bug for some months and informed vendors ahead of the public disclosure to give them time to prepare patches and prevent the vulnerability from being exploited in the wild -- of which there are no current reports of this bug being harnessed by cyberattackers.

-snip-


Read more: http://www.zdnet.com/article/here-is-every-patch-for-krack-wi-fi-attack-available-right-now/
Latest Discussions»Issue Forums»National Security & Defense»Here's every patch for KR...