In October 2017, researchers found fundamental design flaws in WPA2 that could lead to attacks on wireless networks.
Named KRACKs, this technique could be used by attackers to steal sensitive information from unsuspecting wireless users. Based on their research, CERT issued a series of CVEs to address this flaw, and most vendors affected have issued patches.
You can learn more about KRACKs on the researcher’s website.
I’m a SonicWall client, am I vulnerable?
SonicWall has evaluated this vulnerability and has determined that their SonicPoint and SonicWave access points, as well as their TZ and SOHO wireless firewalls are not vulnerable. You do not need to update your SonicWall access points or firewalls.
How else can you protect your wireless network?
Even if you are not a SonicWall client, we strongly advise you follow these step and perhaps consider getting a SonicWall for your environment.
- Patch all Wi-Fi clients with the latest patches from your vendors. The attack is launched by compromising the wireless device, not the wireless router, so that is the most important area to focus on when you go about patching.
- If you are not a SonicWall wireless customer, check with your vendor to determine if you need to patch your wireless access points and/or routers. Ideally, your WiFi solution would be centrally managed allowing you to provide updates and patches in a timely fashion without crippling IT resources. Again, if you are a SonicWall wireless customer no updates to the access points are needed.
- Add additional security to your network by using VPN technology. If you are a SonicWall customer, we recommend:
- For SSL encryption on mobile devices, use the SonicWall Mobile Connect client, which is available on the Apple App Store, Google Play, Windows Phone Store or Chrome Web Store.
- For IPsec encryption, use the SonicWall Global VPN Client.
- Advise users to only use websites with SSL certificates. They must look for the green secure lock symbol on all websites.
- The new SonicWall SonicWave series includes a dedicated third radio for scanning. For SonicWave wireless users, we recommend that you turn on the wireless intrusion detection feature that allows you to block traffic from rogue access points (specifically in this case an evil twin). This will ensure that the third radio is continually scanning for these types of attacks in real-time.
- Keep an eye out for unusual or suspicious activity around your offices. In order to launch an attack with this vulnerability, attackers have to be close to your wireless network.
- However, there is no need to change wi-fi passwords as KRACKs don’t need the password to be successful.
Dial a Nerd believes that IT must provide secure, high-speed access for everyone in the organisation across both wired and wireless networks. The is crucial as wi-fi becomes more of a necessity than a luxury.
Dial a Nerd recommend the SonicWall solution. SonicWall can help you extend breach prevention to your wireless network. SonicWall’s wireless network security solution provides deep packet inspection for both unencrypted and TLS/SSL-encrypted traffic along with a cloud-based, multi-engine Capture sandbox and a complete lineup of centrally managed SonicWave 802.11ac Wave 2 wireless access points.
To get an assessment for your business click here.