New
#1
Well this sucks...Hope its patched soon and not 6 months from now
Just saw the article:
Before proceeding to details of the new Kr00k attack, it's important to note that:
- The vulnerability does not reside in the Wi-Fi encryption protocol; instead, it exists in the way vulnerable chips implemented the encryption,
- It doesn't let attackers connect to your Wi-Fi network and launch further man-in-the-middle attacks or exploitation against other connected devices,
- It doesn't let attackers know your Wi-Fi password, and also changing it wouldn't help you patch the issue,
- It doesn't affect modern devices using WPA3 protocol, the latest Wi-Fi security standard.
- However, it does let attackers capture and decrypt some wireless packets (several kilobytes), but there's no way to predict what data it will include,
- Most importantly, the flaw breaks encryption on the wireless layer but has nothing to do with TLS encryption that still secures your network traffic with sites using HTTPS.
So it's not as big of a deal as it sounded.