Got a question? Call 1800 853 276   |   
Contact usCheckoutContact us

Tales from the Certified Hacker: And we thought WPA2 PSK or Enterprise was safe enough!

By DDLS Webmaster | 18 October 2017

I’m in the U.K. at the moment on holidays, but some things need to be announced on our DDLS blog. For those who may have missed it, there is a bug in Wi-Fi which has been given the name Key Reinstallation Attacks (aka. KRACK), which makes it possible to inject and manipulate data as well as eavesdrop on communications over the air. The only main limitation is that an attacker needs to be within range of a victim to exploit these weaknesses.

It affects WPA2 Personal and Enterprise, regardless of the encryption ciphers used by a network. It mostly affects Linux and Android 6.0 and above, as well as macOS and OpenBSD. Windows and iOS are more or less unaffected due to the way they implement WPA2.

Patches will need to be applied to your particular O/S when available.

More information can be obtained from the websites below:

https://www.krackattacks.com/

https://www.theregister.co.uk/2017/10/16/wpa2_krack_attack_security_wifi_wireless/

Stay safe, Terry Griffin

Principal Technologist: Security


Feature Articles


Blog
2024-2025 Government Budget: Focusing investment in cyber security skilling
By Jeremy Daly | 1 July 2024
Read
Blog
The Growing Importance of Management Skills and the AMA CPM Certification in 2024
By Gary Duffield | 29 July 2024
Read
Blog
The ASD’s Essential Eight: How to Implement Cyber Security Strategies with Training
By Leif Pedersen | 14 October 2024
Read
Blog
5 Common RPL Challenges and How to Overcome Them
By Shanil Sharma | 15 August 2024
Read
Blog
Transforming Your Business and Workforce with Microsoft AI Training
By Leif Pedersen | 30 July 2024
Read
Blog
Security maturity is not a technical-only problem - invest in your people
By Jeremy Daly | 11 November 2024
Read