KRACK is the name of an exploit that a group of computer security researchers created to break the WPA2 security protocol used by many Wi-Fi networks. We are talking about a security protocol that was considered to be extremely safe for those who use Wi-Fi networks and did not want hackers to be able to break them, but here is that nothing is safe anymore today after the announcement of KRACK.
KRACK will be revealed during this day by computer security researchers, and thanks to it, anyone will be able to monitor the Wi-Fi traffic of a network secured with WPA2. KRACK exploits a series of key vulnerabilities of the WPA2 system, based on which information traffic between computers, mobile terminals and access points that have been exploited by hackers can be intercepted.
KRACK is so dangerous that the US authorities have published an official warning intended to inform people that all their data is vulnerable. They say that all encrypted communications can be seen by hackers, they can modify the data accessed by us and redirect to their servers instead of the real ones, so everyone is vulnerable because of these problems.
KRACK breaks the WPA2 security protocol for Wi-Fi networks
KRACK will be explicitly detailed earlier today by cybersecurity researchers and is the most dangerous exploit affecting the entire world that uses Wi-Fi on WPA2. This security protocol is used by companies for their own Wi-Fi networks, so KRACK will be able to be used to attack these companies and steal important data from them, but no one knows how easy everything will be.
"US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017."
KRACK is very dangerous, but it is possible that exploitation is not as easy as it might seem at first glance for those who do not know what it is about. It is possible that in order to attack a Wi-Fi network using KRACK, the hacker needs physical access to the access point, or at least a computer connected to that access point, but for now there are no details, so these are only speculations and no more.
KRACK is so dangerous that it is possible that major Wi-Fi router manufacturers will release many security updates for their products in the next period. Of course, everything depends on what can be done using KRACK and how simple it is to exploit access points, but at the moment things seem to be very serious, many people are wondering what is safe today.
