add arrow-down arrow-left arrow-right arrow-up authorcheckmark clipboard combo comment delete discord dots drag-handle dropdown-arrow errorfacebook history inbox instagram issuelink lock markup-bbcode markup-html markup-pcpp markup-cyclingbuilder markup-plain-text markup-reddit menu pin radio-button save search settings share star-empty star-full star-half switch successtag twitch twitter user warningwattage weight youtube

KRACK attacks render nearly all Wi-Fi networks vulnerable

fn230
  • 28 months ago

https://www.krackattacks.com/

The tl;dr of this is that any Wi-Fi-enabled device you have is most likely vulnerable to at least one variant of this attack. Update your stuff asap.

EDIT: Linux distributions are rolling out the fixes now.

Comments

  • 28 months ago
  • 1 point

Here's an article telling when and what patches are coming out to fix it.

https://www.google.com/amp/www.zdnet.com/google-amp/article/here-is-every-patch-for-krack-wi-fi-attack-available-right-now/

It's a mobile link I think, sorry PC users!

  • 28 months ago
  • 1 point

Why are so many of the big players like Google and Apple taking "a few weeks" to fix it? They've known about it for weeks!

  • 28 months ago
  • 1 point

Google has begun rolling out updates for the Android OS, but needing to update varieties ranging from Android 4.1 to 8.0 takes a while.

Apple already finished their patches.

[comment deleted by staff]
  • 28 months ago
  • 1 point

Ok. Thanks!

  • 28 months ago
  • 1 point

So is Android vulnerable as well? If so will there be an update or something? I'm still rocking an old Samsung phone that's only on 5.0.1. Has there been a Windows 10 update yet?

  • 28 months ago
  • 2 points

Yeah Android is vulnerable.

Google is "aware" but who knows who is actually going to get updates from them for Android.

At the time of writing, neither Toshiba and Samsung responded to our requests for comment. If that changes, we will update the story.

There is a Windows update, released Oct 10th.

  • 28 months ago
  • 1 point

Thank you! :)

  • 28 months ago
  • 1 point

In the meantime, you should use an extensions known as "HTTPS Everywhere" which ensures that your browsing connections remain secure. This isn't an end all be all fix, but should mitigate risk until more solutions are present.

[comment deleted]

Sort

add arrow-down arrow-left arrow-right arrow-up authorcheckmark clipboard combo comment delete discord dots drag-handle dropdown-arrow errorfacebook history inbox instagram issuelink lock markup-bbcode markup-html markup-pcpp markup-cyclingbuilder markup-plain-text markup-reddit menu pin radio-button save search settings share star-empty star-full star-half switch successtag twitch twitter user warningwattage weight youtube