INTRODUCTION to WiFi bug Krack
KRACK WIFI BUG is a major weakness in WPA2 (a wifi protocol) that secures all modern protected Wi-Fi networks which are being used in mobiles, tablets, MacBook, laptops, PDA etc.
It means your wifi security can be very easily breached using KRACK WIFI BUG. KRACK stands for ” key reinstallation attacks”.
To prevent the attack, users must update affected products as soon as security updates become available. Till now very few vendors have released an update, so it is better not to use WIFI if you think you can be a victim. Krack can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on.
HOW WIFI KRACK BUG WORKS?
When we establish a wifi connection with a router, all the data which is being transferred is encrypted via a KEY. And the key is not constant it keeps on changing. But with the help of this worm/bug (KRACK wifi bug), you can either set that key to zero or have a constant key. Directly you can say you have a control over the KEY. Now, since the KEY is known to the infiltrator your data is no more encrypted, it is simply plain text. It can result in great privacy/data loss.
- Changing the wifi password is of no use as the KEY is known to the hacker.
- Attack works against both WPA1 and WPA2, against personal and enterprise networks. And against any cipher suite being used (WPA-TKIP, AES-CCMP, and GCMP). So everyone should update their devices to prevent the attack!
- But an update is subject to availability. Right now only Microsoft has launched the update and Google is on the way. What we can do is wait and watch.
- The best way is to go with ethernet for using the internet and forget WiFi till an update is made available by your wifi device manufacturer (OEM).