• Hey, guest user. Hope you're enjoying NeoGAF! Have you considered registering for an account? Come join us and add your take to the daily discourse.

All your WiFi devices are broken, Android/Linux devices particularly devastated

E

epmode

Member
ViciousDS said:
yes


Netgear released a patch it seems on 10-9


however this is all we get for notes

Fixes security issues.



thanks Netgear lol

for the R7000 nighthawk
Click to expand...
The companies were instructed to not discuss the vulnerability publicly until today. It makes sense that no one mentioned it in prior patch notes.
 
V

ViciousDS

Banned
epmode said:
The companies were instructed to not discuss the vulnerability publicly until today. It makes sense that no one mentioned it in prior patch notes.
Click to expand...

so would it be safe to say that netgear most likely patched it already if thats the only thing the update was for.....was a security fix?
 
The Chosen One

The Chosen One

Member
Meh...

For corporate computers and networks this is a big deal, but for the average user on a home network this isn't a big deal. Unless you're a promient person in your community, it's very unlikely someone is going to park outside your door and go through the trouble of hacking into your WiFi network sifting through all your porn and Netflix traffic on the off chance you might enter your password to a financial account that actually has some real value. They don't care about your GAF or Pornhub account.

The biggest danger for regular home/mobile users is still spear fishing/ransomwre from remote hackers. keeping your browser updated, running anti-virus software, and avoiding dodgy/compromised sites is still the best way to keep your information and computer safe.

If you do happen to have sensitive information on your computer for work purposes then you really shouldn't be connecting via WiFi anyway.
 
M

Minus_Me

Member
It seems that Ubuntu released a patch for this earlier today.

Does this allow an attacker to gain access to the whole network or limit packet interception only on the affected client?
 
B

Blizzard

Banned
Minus_Me said:
It seems that Ubuntu released a patch for this earlier today.

Does this allow an attacker to gain access to the whole network or limit packet interception only on the affected client?
Click to expand...
Just for the affected client I believe, since the encryption stream used by that client's handshake can be decrypted. I believe the article said the wifi password is not exposed.

TheChewyWaffles said:
Don’t you have to be on the network to begin with for this to work? OP is a bit overblown if so.
Click to expand...
I asked a page or two ago but haven't seen any confirmation one way or the other yet. I think you can be off the network and just replay some router packets during the handshake, after which you may be able to decrypt the user's packets (or possibly generate fake packets in the Android/Linux case).

If the user's packets are encrypted with HTTPS or VPN, you'd have to break that encryption using man in the middle or something as well.
 
A

ascii42

Member
The Chosen One said:
Meh...

For corporate computers and networks this is a big deal, but for the average user on a home network this isn't a big deal. Unless you're a promient person in your community, it's very unlikely someone is going to park outside your door and go through the trouble of hacking into your WiFi network sifting through all your porn and Netflix traffic on the off chance you might enter your password to a financial account that actually has some real value. They don't care about your GAF or Pornhub account.

The biggest danger for regular home/mobile users is still spear fishing/ransomwre from remote hackers. keeping your browser updated, running anti-virus software, and avoiding dodgy/compromised sites is still the best way to keep your information and computer safe.

If you do happen to have sensitive information on your computer for work purposes then you really shouldn't be connecting via WiFi anyway.
Click to expand...
I’d guess most people use the same or similar passwords across sites, so getting any account password could be useful. The obvious lesson is to not do that, particular for financial accounts.
 
K

kc44135

Member
Will Amazon be patching their Fire Tablets? Also, I have a Cable Modem, so do I need to worry about that? I imagine that would just be updated automatically, right?
 
A

atomsk

Party Pooper
I live in a gated retirement community on a dead-end street with a bunch of nosy neighbors, and I barely leave the house.

But I guess I'll leave my S7 in airplane mode when I go out until Samsung actually does something (...if they actually do something)
 
S

Slime

Banned
I just remembered Google stopped updating Nexus 7 :( I just checked and the last time it was updated was August 2016, so there's no chance in hell this is getting fixed.

Technosteve said:
Will HP update my Touchpad?
Click to expand...

Oh god, I remember how desperately I tried to get one of those, haha.
 
I

IcyStorm

Member
kc44135 said:
Will Amazon be patching their Fire Tablets? Also, I have a Cable Modem, so do I need to worry about that? I imagine that would just be updated automatically, right?
Click to expand...

https://www.androidcentral.com/amazon-says-patch-wpa2-exploit-krack-works

Modems aren't related, unless you have a modem/router hybrid. But even then you want to patch clients as a priority because clients are the vulnerable ones here. You'll want a router patch if you use one as a WiFi extender.

EDIT: You will ideally want a router patch regardless because of the Fast BSS Transition handshake vulnerability if your router supports 802.11r. But patching your APs will NOT be a full replacement for patching your client devices. Your clients will still be vulnerable to the attack on the 4-way handshake.

OriginofHysteria said:
Same lol, I got an update on like 10-4.

This is for the R6000.
Click to expand...

ViciousDS said:
yes


Netgear released a patch it seems on 10-9


however this is all we get for notes

Fixes security issues.



thanks Netgear lol

for the R7000 nighthawk
Click to expand...

https://kb.netgear.com/000049498/Se...ies-PSV-2017-2826-PSV-2017-2836-PSV-2017-2837
 
B

BreezyLimbo

Banned
my router had an update

I updated my computer a week ago(Windows 10)

I should be good right

Oh yeah there's my phone, it's like 3 years old, rip.
 
D

DarthWoo

I'm glad Grandpa porked a Chinese Muslim
I'm guessing my 12 year old WRT54G router isn't likely to ever get anything in the way of a fix for this?
 
S

Slime

Banned
Is there any way to determine what specific Windows update(s) actually fix this? None of the ones installed on my Windows 8.1 PC or Windows 10 laptop match the ones that mentioned in this thread, and none of the articles I've read have been any help.

There's no hope in sight for my router, tablet or phone, so I'd at least like to save my computers. ;_;
 
B

brianmcdoogle

Member
I know Apple commented that iOS, watchOS, tvOS, and macOS are already patched on betas and will be for the general public upon next release, but what about the Airport routers? I think those teams don’t exist anymore and I can’t recall the last time my old router had a firmware update.
 
C

cyborg009

Banned
Does anyone the link where it shows you the vendors and their current status on working the patch? I saw the list but I didn't save it. It included stuff like dd-wrt and others.
 
Entroyp

Entroyp

Member
brianmcdoogle said:
I know Apple commented that iOS, watchOS, tvOS, and macOS are already patched on betas and will be for the general public upon next release, but what about the Airport routers? I think those teams don’t exist anymore and I can’t recall the last time my old router had a firmware update.
Click to expand...

Patching your devices is enough to prevent this attack. Don’t worry about APs/Routers.
 
N

Nelo Ice

Banned
So I'm not seeing an option to update my uverse router. Is there no patch or does ATT automatically update their routers?.
 
H

hateradio

The Most Dangerous Yes Man
KRACK - Just realized that "ACK" is for acknowledgement, because of the handshake.

Great name. Awful situation.

DarthWoo said:
I'm guessing my 12 year old WRT54G router isn't likely to ever get anything in the way of a fix for this?
Click to expand...
As an AP, it may be fine, but don't set it to be a client or repeater, as mentioned in the OP.
 
D

Deleted member 80556

Unconfirmed Member
Crap, my ISP is the one that handles all of the router's settings and stuff (like the website for managing the router is literally blocked). I hope that someone at IT learns about this and updates the routers.

I doubt that Sony updates the Xperia Z3 as well, ah damn.
 
H

hateradio

The Most Dangerous Yes Man
Also, is there anything about how the patch works?

Does it prevent the emptying of the WiFi password or something else.
 
I

IcyStorm

Member
hateradio said:
Also, is there anything about how the patch works?

Does it prevent the emptying of the WiFi password or something else.
Click to expand...

It might depend a bit on the actual vendor - it's not like all vendors take a patch and distribute the same thing. And different systems were vulnerable to different attacks (such as iOS 10.3.1+ and Windows 10 not being vulnerable to the 4-way handshake attack but still being vulnerable to the group key attack).

WiFi passwords are never compromised during any variation of the key reinstallation attacks, so that's not a concern.

As an example, here's Arch Linux's fix for wpa_supplicant. https://git.archlinux.org/svntogit/...t&id=9c1bda00a846ff3b60e7c4b4f60b28ff4a8f7768

Neverwinter27 said:
Is 4G affected?
Click to expand...

No. If you actually read about it, you would know that these vulnerabilities affect WPA and WPA2 protected WiFi connections.

Now say you are using a 4G/LTE mobile hotspot or using your 4G/LTE capable phone or tablet as a mobile hotspot, then yes, in a sense 4G is affected but not really.

mreddie said:
So since my router is a cable given router, I have to wait to see my provider update the router. Ugh.
Click to expand...

Juan29.zapata said:
Crap, my ISP is the one that handles all of the router's settings and stuff (like the website for managing the router is literally blocked). I hope that someone at IT learns about this and updates the routers.

I doubt that Sony updates the Xperia Z3 as well, ah damn.
Click to expand...

Nelo Ice said:
So I'm not seeing an option to update my uverse router. Is there no patch or does ATT automatically update their routers?.
Click to expand...

Prioritize patching your client devices, such as your phones, tablets, computers, game consoles, IoT/smart home devices, televisions, and anything else. Routers cannot be the targets of attackers using these vulnerabilities unless you are using a router as a range extender.

And not all vendors have patches out yet, and some may not receive patches at all, in particular for routers and access points, because again, they are not the ones technically affected by these vulnerabilities.

EDIT: You will still want to patch your access points/routers if you can to prevent attacks on the Fast BSS Transition handshake if they support 802.11r.

Slime said:
Is there any way to determine what specific Windows update(s) actually fix this? None of the ones installed on my Windows 8.1 PC or Windows 10 laptop match the ones that mentioned in this thread, and none of the articles I've read have been any help.

There's no hope in sight for my router, tablet or phone, so I'd at least like to save my computers. ;_;
Click to expand...

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-13080

You should be able to see all the information there. Find the applicable operating system version on that page, and there's a download link for each one. Those links should specifically show what updates include this fix. You can manually download the update, or just use Windows Update and they should appear.
 
You must log in or register to reply here.

Similar threads

PlayStation’s first Remote Play dedicated device, PlayStation Portal remote player, to launch later this year at $199.99
13 14 15 16 17
846
36K
mckmas8808 replied
How Nacon, The Publisher of The Sinking City, Cracked and Pirated The Game
32
5K
ManaByte replied
  • Locked
Hide yo Wifi, new wireless Android/iOS exploit allows for fatal phone hijacks
14
4K
Coreda replied
RetroArch 1.8.2 (and onwards)
2 3 4
192
39K
Teslerum replied
  • Locked
O-MG, It's time for Android O (Dev Preview)
2
73
7K
Pyrokai replied
Top Bottom