Security Advisory: Wi-Fi flaw

What is this new Wi-Fi flaw?

Security researchers have just released details on a serious weakness in Wi-Fi wireless security.  Most Wi-Fi networks used by businesses and home users alike, use “WPA2” security.  It’s the industry standard that encrypts traffic on Wi-Fi networks to thwart eavesdroppers and protects your data and privacy.

A recently discovered flaw in WPA2’s cryptographic protocols (aka KRACK) could allow someone to read and steal your data.  In practice, this means that hackers could steal your password, intercept your financial data, or even manipulate commands to, for instance, send your money to themselves.

 

What should I do to protect myself?

Wi-Fi makers are currently working on patches that will fix this security flaw.  For now, you should still use WPA2.  Its protections are still worth the risk that someone might be exploiting KRACK near you.  The best think you can do to protect yourself in the meantime is to install updates for as many of your Wi-Fi enabled devices as possible as soon as they come out.  Until a fix patch is released, you should try to use only HTTPS & SSH protocols or a VPN service.

For business networks, the key is to architect the network with multiple layers of protection, so data security does not rely on any one standard.  Active protections, like Rogue AP detection, can be integrated with the network to provide real-time alerting to potentially malicious activity.

For our ATProtect customers, we have been able to monitor logs in real-time from a variety of Wi-Fi network and security sources and alert on things like rogue AP’s and duplicate SSID’s.  This gives our SOC engineers a deep and continuous look into your Wi-Fi activity and quickly detect these malicious and anomalous conditions that could ultimately lead to a security breach.

For more information or to get started, contact us at: atsales@appalachiatech.com