What is the Krack Attack? Imagine your WPA2 WiFi security is not insecure. Imagine now that some one can see what you send on the Internet, and they can re-direct you Internet search or connection to a site they choose; a site that is infected with malware? Now imagine there is a fix coming for the problem, but for a little while, you are going to have to grin and take it?
What is the Krack Attack?
The Krack Attack, according to ZNET, is as follows: “The bug, known as “KRACK” for Key Reinstallation Attack, exposes a fundamental flaw in WPA2, a common protocol used in securing most modern wireless networks…. That weakness can, at its worst, allow an attacker to decrypt network traffic from a WPA2-enabled device, hijack connections, and inject content into the traffic stream.”
What it means to the everyday business and consumer of Internet is this… “The security for your WiFi device does not work 100%. Huston, we have a problem.” There is a very real way for you to get really hurt by your WiFi devices. This is too real a problem to ignore.
The flaw was discovered by Mathy Vanhoef, which can allow attackers on to your network if they know how to manipulate the vulnerability.
Historically, we used a WEP encryption system years ago on our wireless routers and WiFi devices. The bad guys figured how to break in, and we moved over to WPA2 security. Now the bad guys have figured out that there is a flaw in the WPA2 system; and there is currently no new system to move to. The Krack Attack is here.
Currently WiFi router companies, and those who make WiFi components, like Internet cards and other such internet devices, are rushing to create a solution for this Krack Attack vulnerability. Our KNIGHT in SHINING ARMOUR is coming over the hill will be a software update; also know as a firmware update.
There is still a debate out there as to how bad the Krack Attack flaw is. Opinions vary on this matter. None of use expected to be in this place. But one thing is for sure, the mainstream media is not talking about this very topic much. Maybe because it is too technical for them, or they just do not fully understand how bad this could be?
I was chatting on Twitter today with D.J. Moore [Certified Ethical Hacker and Security Blogger at Server@Work] about the Krack Attack and here is what we talked about:
Me: My social media class wants to know how bad this hack is in your eyes? Very little in the news. What are your thoughts?
D.J. : It’s all about threat models. If your business is in selling WiFi, it’s huge. If you’re a military installation with no WiFi, this isn’t even on your radar. It’s all about measuring risk. This isn’t huge to the average consumer, but might be detrimental to defenders.
D.J. : Since the attack is no longer theoretical, the risk of this happening has increased, but that does not make it simple to perform. To put this back into perspective: we are bombarded with phishing emails constantly and one wrong click could mean identity theft with “consent.”
Me: I wonder if the bad actors will try to exploit this opening while it remains unpatched and vulnerable D.J. ?
D.J. : I’m sure some will, but the attack requires proximity and time. That decreases the risk a lot for people in lessly dense populated areas. People in large cities and/or apartment complexes should be more concerned. Those with ISP provided boxes will be most vulnerable.
This problem is going to require a fix in the form of a patch, aka, the software update or firmware update.
This is a very complicated problem that is going to require a complicated fix, which we ourselves cannot provide. We have to take the Hurry Up and Wait Approach.
What can the Krack Attack do to me?
Fortunately, right now there are few actors who can actually benefit from this WiFi WPA2 vulnerability. YES there is a flaw that is out there, and YES it is a bad one, but the good guys are trying to race the bad guys to the fix.
What could happen to you?
I asked my tech guy at my computer repair store [G&G Computers] for answers. He gave this example. Let’s say you were logging into Netflix. This flaw could allow the following to happen:
- The attacker could re-direct you to a website that is full of malware, think really bad viruses and you will get it.
- The attacker could also intercept and read all your Internet traffic.
Well you say that you have nothing to hide? I hear this a lot by the way!
How about your bank card number, your password to Facebook, your website log in credentials or even customer information? Our everyday life is spent on the Internet in one form or the other. The Krack Attack is going to make the next little more of a pain in the backside for many if someone actually figures out how to really exploit the flaw. Maybe we should say a special prayer for the good guys to hurry along with the fix?
What is the best thing I can do right now?
The first thing you can do right now is NOT panic. This flaw has been out there for a few months. Wireless router companies are working hard on a fix. Even the big guys like Microsoft, Apple, Android, and any other WiFi device manufacturers, are creating software updates to help fix this vulnerability.
The good folks at ZDNET have written the following:
“In general, Windows and newer versions of iOS are unaffected, but the bug can have a serious impact on Android 6.0 Marshmallow and newer.
The attack could also be devastating for IoT devices, as vendors often fail to implement acceptable security standards or update systems in the supply chain, which has already led to millions of vulnerable and unpatched IoT devices being exposed for use by botnets.
Note: If I have missed anything out or need something changed, please send me a note on my contact form. This subject is way too important to get wrong. If you found this article helpful, please help others to be aware of this. Let’s get the word other there.
Be safe out there folks.
Update: 8 November 2017
Here’s a great video from Corey Nachreiner from Watchguard explaining the problem in an 8 minute video that is understandable by most people:
Corey has a great way of making complicated things understandable. Enjoy
Many companies are pushing out patches for your WiFi devices as of this date. Please make sure you update your devices that use WiFi.