Using WPA2 wireless? Patch up ASAP!

[Elixer]

Think of all of those devices that will NOT get patched up.

**edit, Just a FYI, but *clients* should be patched pronto. That means, all your phones, IoT devices, and whatever else is a client.
If you are using a router as a router (and are NOT using WPA2/TKIP, WPA2/GCMP, or 802.11r), this is NOT a time critical thing, the clients must be patched though, that is how they can intercept things.

As many people have read or will soon read, there is a vulnerability in the WPA2 wireless protocol called Krack that could allow attackers to eavesdrop on wireless connections and inject data into the wireless stream in order to install malware or modify web pages.

To protect yourself, many WiFi product vendors will be releasing updated firmware and drivers for their products. It is strongly suggested that users update their hardware as soon as a update is available in order to protect themselves. This includes router firmware and wireless network card drivers.

To help with this, I have created a list of known information regarding various WiFi vendors and whether new drivers are available. As this vulnerability is fairly new, there is little information available, I advise you to check this page throughout the coming days to see if new information is available. This page includes information resulting from contacting of vendors, CERT's informative page, and other sources.

https://www.bleepingcomputer.com/ne...-driver-updates-for-krack-wpa2-vulnerability/

 

[Ken g6]

There's a story about this on the main AnandTech site too: https://www.anandtech.com/show/1193...ilities-disclosed-affecting-almost-everything

 

[dave_the_nerd]

Dammit, i'mm'a probably need a new router now.

And I had all my dhcp reservations and stuff just the way I wanted them.

Maybe I should just disable wifi and get a new dedicated WAP. That'd be cheaper.

 

[JimKiler]

Do i need to patch both ends or if i patch my router will my phone be protected at home? I presume i want my phone to be patched for other networks but i am not holding my breath on that.

 

[Kaido]

 

[Kaido]

Here's every patch for KRACK Wi-Fi vulnerability available right now:

http://www.zdnet.com/article/here-is-every-patch-for-krack-wi-fi-attack-available-right-now/

 

[John Connor]

YAV (Yet another vulnerability).

I use Asus Merlin so I need to see if they are working on a patch. There's also a DNSMasq attack as well that needs patching. Since I use an old laptop and phone I wonder if they will have patches. What a PITA.

 

[Genx87]

From reading about it. Patching the AP only helps so much. Clients need to also be patched since they are the main attack vector.

 

[sdifox]

From reading about it. Patching the AP only helps so much. Clients need to also be patched since they are the main attack vector.

MS already pushed out patch

 

[Genx87]

MS already pushed out patch

I'm thinking cell phones running android. Any word if Google is going to patch for this?

 

[sdifox]

I'm thinking cell phones running android. Any word if Google is going to patch for this?

Up to device makers. Which is stupid.

 

[Genx87]

Up to device makers. Which is stupid.

Agreed!

 

[ultimatebob]

Agreed!

Given their wonderful history with security updates, I'll bet that Verizon will recommend disabling Wi-Fi on your phone and upgrading your data plan to "patch" this issue

 

[Crono]

Up to device makers. Which is stupid.

I'm still waiting for ASUS/Verizon (I know, I know) to patch Blueborne on my Zenfone AR. I think I'm gong to go back to a unlocked bootloader device I can root, at least, everytime I go to a locked down one I'm pissed off at the update process (among othrr things).

 

[Genx87]

Meraki patched for this today. APs already upgraded.

 

[TheVrolok]

Marked for patching!

 

[Red Squirrel]

This is why I don't "wireless all the things". It was a matter of time. I have wifi, but it's on a separate vlan and I treat it as a higher risk network. Even if someone gets on they have limited access to my network. Well they could screw with my hvac so it's still kinda bad, but the hvac controller has some hard coded limits and the relays are mechanically wired in a way that prevents doing damage like turning AC and heat on at same time.

Time to update my Unifi APs I guess. Those are kinda a pain to upgrade too. I only have one in service but I tend to just update the spares too.

 

[Crono]

Time to update my Unifi APs I guess. Those are kinda a pain to upgrade too. I only have one in service but I tend to just update the spares too.

Do you have any set to auto update? I have to check mine when I get home in the morning. I usually don't have the controller running.

 

[dave_the_nerd]

I just bought a bunch of TP-Link wifi outlets, too... dangblastit.

 

[Svnla]

So nothing from Asus (my wireless router maker)? Just seem like every week, something is broken/breach/messed up from some companies.

 

[Red Squirrel]

Do you have any set to auto update? I have to check mine when I get home in the morning. I usually don't have the controller running.

Usually have to upload it to each AP with SSH then run a script that applies it. Not so much that it's hard, just I always forget the exact steps so end up spending some time fidding around. I don't see any option in the controller to upgrade, but probably have to upgrade the controller too. Think I had to last time as it would not pickup the AP.

Upon quick google search I don't think they have the fix out yet, they are still testing, so I'll probably wait a bit before I do an upgrade.

 

[sdifox]

So nothing from Asus (my wireless router maker)? Just seem like every week, something is broken/breach/messed up from some companies.

This is an issue with the protocol, affecting EVERYONE.

 

[ImpulsE69]

I guarantee you your local wifi is way more 'secure' and less likely to be 'hacked' than all those places you order stuff from every day that keep all your information. Sometimes I really like living in the middle of nowhere by old people. I don't have to worry about all this fear mongering.

 

[Red Squirrel]

That's the thing too the odds of someone bothering to hack your home wifi is small, though still want to be protected as it's still possible.

 

[RayCathode]

Any reason why only Android 6.0 and above are vulnerable?

I see DD-WRT issued a patch, but not Tomato. Unfortunately, none of the lists I've seen include that in the safe, not safe or unknown category.

I agree that it is unlikely, but I'd rather deal with the hassle of patching than dealing with someone taking advantage of the vulnerability (however remote the chance).