What you need to know about WPA2 KRACK attacks
In the last few days the press have been talking about a Wi-fi security flaw 'putting devices at risk of hacks'. Researchers have revealed a flaw in the Wi-fi connections used by home users and businesses around the world. This flaw has been dubbed the 'Krack'.
The key reinstallation attack (KRACK) targets the four-way handshake of the WPA2 protocol and relies on tricking a victim’s device into reusing an already-in-use key. It affects WPA2 Personal and Enterprise, irrespective of the encryption ciphers used by a network.
The weakness is the Wi-Fi standard itself, and not in individual products or implementations. Therefore, any correct implementation of WPA2 is likely affected. This could effect any wireless device.
The best thing you can do is update your router and devices like smartphones and PCs. Updates may not yet be available. Microsoft said an automatic security update issued last week had fixed the problem for Windows 7, 8 and 10 users. A Google spokesperson stated: “We’re aware of the issue, and we will be patching any affected devices in the coming weeks.” Apple said it had developed updates to iOS and MacOS that were in testing and would be released within weeks.