In October 2017, researcher Mathy Vanhoef found fundamental design flaws in WPA2, a standard Wifi encryption protocol. The flaw could lead to penetration of wireless networks and an attacker wouldn’t even need to know your password.
Named ‘Krack’, this technique can be used by attackers to steal sensitive information from unsuspecting wireless users.
Based on its research software engineering institute CERT issued a series of instructions to address this flaw, and many vendors affected have issued patches. Considering the recent massive breach of private data and resultant risks for the associated businesses, now is the time to ensure you are protected on all sides.
Given the seriousness of this vulnerability users are advised to patch all Wifi clients and routers. A Krack attack compromises a wireless device with some instances compromising the wireless router.
Some firewalls and access points, like those from Sonicwall, had built-in protection and don’t need to patch their endpoints but all devices should be checked.
As an extra precaution users could make use of a virtual private network (VPN) for access to sensitive data.
Users should also only visit websites with SSL certificates, these can be easily identified by looking for the green lock symbol on websites.
Above all keep an eye out for suspicious behaviour around the office as attackers need to be in-range of the Wifi network to execute a Krack attack.
Dial a Nerd and Turrito are implementing patches for contract customers but if you do not have a Service Agreement please make sure your devices are up-to-date or book a consultation. If you have a Dial a Nerd configured Sonicwall firewall in place you are safe in any event as it automatically inspects packets and detects breaches of this sort.
This article originally appeared on HTXT.co.za