Widespread Security Flaw Leaves Wi-Fi Networks Open to Attack

Photo by Eugenio Marongiu / Shutterstock.com

A fundamental flaw has been discovered in the security layer that protects Wi-Fi networks.

As a result, it is possible for hackers to intercept information you transmit over a Wi-Fi connection.

This vulnerability in the security layer known as Wi-Fi protected access II, or WPA2, was discovered by Mathy Vanhoef, a researcher at Belgian university KU Leuven. He explains on his website devoted to the issue:

“This can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on. The attack works against all modern protected Wi-Fi networks. Depending on the network configuration, it is also possible to inject and manipulate data. For example, an attacker might be able to inject ransomware or other malware into websites.”

The CERT Division of the Software Engineering Institute at Carnegie Mellon University — which is sponsored by the U.S. Department of Homeland Security — also issued a notice about the WPA2 vulnerability Monday.

How hackers can exploit devices

Attackers could exploit the WPA2 weakness using what’s known as a key reinstallation attack, or KRACK, if they are within range of your Wi-Fi network.

As Alan Woodward, a professor in the Department of Computer Science at England’s University of Surrey, explains it to the BBC:

“When any device uses Wi-Fi to connect to, say, a router it does what is known as a ‘handshake’: It goes through a four-step dialogue, whereby the two devices agree [on] a key to use to secure the data being passed (a “session key”). This attack begins by tricking a victim into reinstalling the live key by replaying a modified version of the original handshake. In doing this a number of important set-up values can be reset, which can, for example, render certain elements of the encryption much weaker.”

Vanhoef notes that all modern protected Wi-Fi networks use this four-way handshake. So, any device that supports a Wi-Fi connection is most likely affected by this vulnerability. For example, his research found that Android, Apple, Linux and Windows devices, among others, are at risk.

What you should know and do about the WPA2 weakness

The security flaws Vanhoef discovered are in the WPA2 standard itself rather than individual products. That is why any Wi-Fi-enabled device is most likely impacted. It is also why experts, including Vanhoef and CERT, are urging folks to update their devices with the latest available security patches. That includes laptops and smartphones as well as routers. CERT’s note says:

The WPA2 protocol is ubiquitous in wireless networking. Users are encouraged to install updates to affected products and hosts as they are available. For information about a specific vendor or product, check the Vendor Information section of this document or contact the vendor directly.

Forbes reports that Microsoft has already issued a patch, while Cisco and Intel have issued security advisories.

A spokesperson for Google, which developed the Android operating system, told Forbes, “We’re aware of the issue, and we will be patching any affected devices in the coming weeks.”

The Wi-Fi Alliance, which represents the Wi-Fi industry, also notes that “there is no evidence that the vulnerability has been exploited maliciously.”

What’s your take on this news? Sound off below or over on our Facebook page.

How to find cheaper car insurance in minutes

Getting a better deal on car insurance doesn't have to be hard. You can have The Zebra, an insurance comparison site compare quotes in just a few minutes and find you the best rates. Consumers save an average of $368 per year, according to the site, so if you're ready to secure your new rate, get started now.

Read Next
Replace These 8 Things — for Your Health and Your Budget
Replace These 8 Things — for Your Health and Your Budget

Being frugal isn’t smart if you put off replacing these things. Waiting too long can cost money or even endanger your health.

Don’t Pay for These 10 Things: They Are Free With a Library Card
Don’t Pay for These 10 Things: They Are Free With a Library Card

Before you spend another dollar on items and services like these, check with your public library.

Never Buy These 12 Things at a Thrift Store
Never Buy These 12 Things at a Thrift Store

Sometimes a great deal is not worth it — or, even worse, is dangerous.

How to Save Up to 70% on 7 Everyday Purchases
How to Save Up to 70% on 7 Everyday Purchases

Stop getting sucked into paying a premium when good alternatives are available at huge savings.

This Is the Best Used Car You Can Buy
This Is the Best Used Car You Can Buy

This car combines reliability, safety and long-lasting value.

View this page without ads

Help us produce more money-saving articles and videos by subscribing to a membership.

Get Started

Most Popular
Will I Get My Ex-Husband’s Social Security When He Dies?
Will I Get My Ex-Husband’s Social Security When He Dies?

Two factors determine how much money is coming to you.

7 Ways to Boost Your Credit Score Fast
7 Ways to Boost Your Credit Score Fast

Your financial security might soon depend upon the strength of your credit score.

21 Things You Should Always Buy at a Dollar Store
21 Things You Should Always Buy at a Dollar Store

Dollar stores have great bargains on these familiar purchases. Yes, even pregnancy tests.

13 Brilliant Bulk-Buy Items on Amazon
13 Brilliant Bulk-Buy Items on Amazon

Every household should have these products on hand. Buying them in bulk on Amazon saves you cash.

6 Reasons I Will Never Trust Suze Orman
6 Reasons I Will Never Trust Suze Orman

Beware: The self-proclaimed personal finance expert has a track record that suggests more sizzle than steak.

This Type of Social Security Benefit Is Often Overlooked
This Type of Social Security Benefit Is Often Overlooked

The Social Security Administration is not helping certain people get money to which they are entitled, a report says.

Getting These 2 Shots Could Reduce Your Risk of Dementia
Getting These 2 Shots Could Reduce Your Risk of Dementia

These vaccines may lower the risk of Alzheimer’s disease by up to 40%.

8 Deep Discounts Available on Amazon This Friday
8 Deep Discounts Available on Amazon This Friday

These items are all steeply discounted — but the deals won’t last long.

9 Everyday Problems You Can Solve With Vaseline
9 Everyday Problems You Can Solve With Vaseline

Forget expensive specialty products. Good ol’ petroleum jelly can address many common annoyances.

16 Amazon Purchases That We Are Loving Right Now
16 Amazon Purchases That We Are Loving Right Now

These practical products make everyday life a little easier.

19 Purchases That Buyers Almost Always Regret
19 Purchases That Buyers Almost Always Regret

Think twice before buying these things.

19 High-Paying Jobs You Can Get With a 2-Year Degree
19 High-Paying Jobs You Can Get With a 2-Year Degree

These jobs pay more than the typical job in the U.S. — and no bachelor’s degree is required.

7 Tips for Building an Emergency Stockpile
7 Tips for Building an Emergency Stockpile

A pandemic or natural disaster could leave you reliant on your existing food supply. Is your pantry prepared?

Homeowners Say These 2 Kitchen Appliance Brands Are Best
Homeowners Say These 2 Kitchen Appliance Brands Are Best

One brand takes five of the top honors, while another ranks highest in three categories.

Is a Second Stimulus Check Still Coming?
Is a Second Stimulus Check Still Coming?

The status of another round of direct payments to taxpayers is a mix of good and bad news.

41 Things You Should Never Buy
41 Things You Should Never Buy

Some purchases are just plain dumb. Give yourself — and your budget — a break. Don’t spend money on this stuff.

9 Indestructible Products That Are Worth the Price
9 Indestructible Products That Are Worth the Price

If you’re willing to pay a little more for these products, you may never have to shop for another again.

5 Ways to Get Amazon Prime for Free
5 Ways to Get Amazon Prime for Free

Hesitant to drop $119 a year on an Amazon Prime membership? Here’s how to get it for free.

8 Ways to Slash Your Internet Bill
8 Ways to Slash Your Internet Bill

No matter what price you are paying for internet service, taking these simple steps can lower it.

View More Articles

View this page without ads

Help us produce more money-saving articles and videos by subscribing to a membership.

Get Started

Add a Comment

Our Policy: We welcome relevant and respectful comments in order to foster healthy and informative discussions. All other comments may be removed. Comments with links are automatically held for moderation.