Thread: Superhub KRACK security hole in WPA2 - VM fixes incoming?
View Single Post
Old 17-10-2017, 14:35   #7
Qtx
CF's Worst Nightmare
 
Join Date: May 2012
Location: Probably outside the M25
Services: Sky Fibre Unlimited 40/10
Posts: 3,473
Qtx has a bronzed appealQtx has a bronzed appeal
Qtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appealQtx has a bronzed appeal
Re: KRACK security hole in WPA2 - VM fixes incoming?
Quote:
Originally Posted by Ignitionnet View Post
It's the classic case of 'How many enemies do you actually have?!'. Unless a nation state or a major company with few morals has a reason to be interested in you
Probably more of an issue for a casual user is if they live in flats and have a neighbour who likes to dabble with these things.

This flaw allows someone who couldn't crack your wifi password to listen in on the traffic anyway. Luckily most sites that allow you to login are https by default now so the traffic logged would be encrypted anyway. Cableforum doesn't do this so in the logged traffic your username and password for here would be easily visible.

I would expect an android exploit could come out sooner from individuals trying to exploit this as it's much easier to code due to almost a blank encryption key that can be forced.

VPN's encrypt the traffic so nice and safe, until you have to start wondering on what machine the RSA keys were made because of another recent problem found in hardware which is probably more of an issue than this WIFI problem. https://www.bleepingcomputer.com/new...dors-affected/
Qtx is offline   Reply With Quote