A massive and widespread vulnerability has been uncovered that can impact any device that uses Wi-Fi.
This new cyber threat has been dubbed KRACK, and it allows hackers to decrypt and view everything targeted users are doing online – and gives them the ability to steal sensitive data like credit card numbers and passwords.
KRACK is affecting a core encryption protocol of Wi-Fi Protected Access 2 (WPA2), essentially tricking devices into accepting recycled authorization keys that a hacker has manipulated in order to intercept Internet traffic. Not only can a hacker use this to spy on your web traffic and help themselves to personal information, but they can also inject ransomware and other malware into websites.
While Android devices are especially vulnerable to this attack, Linux, Apple, Windows, OpenBSD, MediaTek, and Linksys users are all being affected by variants of KRACK. Manufacturers are already rolling out patches for laptops, smartphones, and routers to fix this issue. Until your devices have been patched, be cautious when using anything with a Wi-Fi connection, and consider using VPN software if you aren’t already.
Servcom USA is already taking steps to protect our managed clients. We will be reaching out this week to schedule patches and upgrades to affected devices.
If your business is not already a client, please reach out to us via our website so that we can arrange an analysis of the impact KRACK may have on your business.