6
6
0
Using Public WPA2 Wifi? It isn't as safe as advertised. If you find yourself completing any transaction on your phone that you wouldn't want to read about in the paper tomorrow, I'd read this. The rest of us should probably read it anyway. This research is fresh out of Belgium, and will be presented 1 Nov 2017 at an upcoming conference.
KRACK Attacks: Breaking WPA2
Posted from krackattacks.com
Cybersecurity
Hacking
Wireless
Banking
Online Media
Posted >1 y ago
Responses: 1
0
0
0
This is definitely interesting, although it looks like it still requires the victim to be connected to a rogue AP. This has been a fear and an issue for years when dealing with Public WiFi.
(0)
(0)
Maj William W. 'Bill' Price
True, SSG Derek Scheller, but the twist here is that I can craft and transmit a nonce packet that rekeys a client without notice, and I don't have to be an AP to do so. I then have access to the encrypted datastream from that client. IMHO company wifis might as well be public given the poor protection SSIDs and WPA2 keys receive. Hence the increases need for awareness, and hence my post to RP this morning.
(0)
(0)
SSG Derek Scheller
Maj William W. 'Bill' Price - Oh I agree, and that was where I was wondering if you needed to be an AP or not. IMHO I don't use any WiFi unless its on my home network. As for companies and the devices they use, it would require constant monitoring of people that could possibly be in range of their network. Limiting the range of your APs could help as well so that only those with a High Gain antenna could access your network at which point once you are a target and someone is dedicated enough to get in, there isn't much you can do at this point.
(1)
(0)
Read This Next
Continue with Facebook 
Continue with Google