I’m in the U.K. at the moment on holidays, but some things need to be announced on our DDLS blog. For those who may have missed it, there is a bug in Wi-Fi which has been given the name Key Reinstallation Attacks (aka. KRACK), which makes it possible to inject and manipulate data as well as eavesdrop on communications over the air. The only main limitation is that an attacker needs to be within range of a victim to exploit these weaknesses.

It affects WPA2 Personal and Enterprise, regardless of the encryption ciphers used by a network. It mostly affects Linux and Android 6.0 and above, as well as macOS and OpenBSD. Windows and iOS are more or less unaffected due to the way they implement WPA2.

Patches will need to be applied to your particular O/S when available.

More information can be obtained from the websites below:

https://www.krackattacks.com/

https://www.theregister.co.uk/2017/10/16/wpa2_krack_attack_security_wifi_wireless/

Stay safe, Terry Griffin

Principal Technologist: Security



Feature Articles


Blog
The Philippines' National Cyber Security Plan 2023-2028: Roadmap to Cyberspace Resilience
By Justin Luna | 28 August 2024
Blog
2024-2025 Government Budget: Focusing investment in cyber security skilling
By Jeremy Daly | 1 July 2024
Read
Blog
20 Tips for Secure Cloud Migration, Supported with ISC2 CCSP Training
By Jeremy Daly | 14 March 2025
eBook
The Ultimate Guide to the CCSP
By Lumify Work Team and ISC2 | 14 March 2025
Blog
Transforming the Philippine Workforce: The National AI Strategy and AI Skills Development
By Chloe Villanueva | 18 December 2024
Case Study
Boosting Government Cyber Security: The Impact of ISC2 CLSSP Certification in COMELEC
By Chloe Villanueva | 19 December 2024
News
Lumify Work Product Manager Achieves Triple Ambassador Status with PeopleCert
By Lumify Work Team | 17 March 2025