WPA2 Wi-Fi Vulnerability to KRACK Attacks Already Patched by Microsoft, Apple; Google Working on Fix
A newly discovered flaw in the widely used Wi-Fi encryption protocol – WPA2 – could leave millions of users vulnerable to attacks, prompting warnings Monday from the US government and security researchers worldwide. The US government's Computer Emergency Response Team (CERT) issued a security bulletin saying the flaw can open the door to hackers seeking to eavesdrop on or hijack devices using wireless networks. "Exploitation of these vulnerabilities could allow an attacker to take control of an affected system," said CERT, which is part of the US Department of Homeland Security. he agency's warning came on the heels of research by computer scientists at the Belgian university KU Leuven, who dubbed the flaw KRACK, for Key Reinstallation Attack. The KRACK attacks target Wi-Fi clients using the WPA2 protocol, and affected operating systems include Linux and Android, with version 6.0 and above said to be especially vulnerable. Also affected are Wi-Fi capable dev...