WPA2 encryption has been breached. The security researcher from the University of Leuven, named Mathy Vanhoef, has discovered a grave security flaw in the most used security protocol in wireless networks; WPA2. As the researcher explained, the flaw is mainly in the WPA2 protocol itself and not in the devices we use for WiFi connection, such as Linksys, TP-Link, Asus, and other popular routers.
The flaw is basically a WPA2 crack, which means that attack established on this Wifi security protocol named KRACK which means Key Reinstallation Attack as named by the inventor. Here are some words from the researcher himself; “Our main attack is against the 4-way handshake of the WPA2 protocol. This handshake is executed when a client wants to join a protected Wi-Fi network and is used to confirm that both the client and access point possess the correct credentials. At the same time, the 4-way handshake also negotiates a fresh encryption key that will be used to encrypt all subsequent traffic. Currently, all modern protected Wi-Fi networks use the 4-way handshake. This implies all these networks are affected by our attack. For instance, the attack works against personal and enterprise Wi-Fi networks, against the older WPA and the latest WPA2 standard, and even against networks that only use AES. All our attacks against WPA2 use a novel technique called a key reinstallation attack.”
Additionally, KRACK works by carrying out out a Man-in-the-Middle Attack which enforces the WiFi users to re-install the encryption key crucial for the protection of WPA2 traffic. Furthermore, Krack can also be used to establish, add and manipulate data. As well as spy on communications done through the compromised networks.
Hence, the WPA2 is cracked. Now all your devices connected to the WiFi are at risk of online privacy and security threats.
How to Protect Yourself From WPA2 KRACK Attack
Currently, all the users can use their WiFi connection until the fix is deployed for this KRACK attack. However, you can adopt these immediate steps to enhance the security of your Wifi. And ensure protection from any potential privacy and security threat;
- Immediately change your Wifi’s password. It will not reduce the risk of attack, but using a stronger password can protect you a lot.
- Update the router’s firmware to the latest version to receive the latest fixes for bugs and flaws.
- Use a secure VPN service to encrypt all your devices and implement high-level end-to-end encryption.
WPA Cracked, What are the Precautions?
After this KRACK attack launched on WPA2. The United States Computer Emergency Readiness Team issued the following warning in response to the exploit:
US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.
