Are you currently wondering what the heck is going on in the world of tech? Dont fret, we're here with the latest roll out of Technology Today, to sift through the good, the bad and the techy tidbits.
Researches have released details on the NEW attack against WI-FI encryption, the Key Reinstallation Attack a.k.a. 'KRACK', this past week. Companies large and small alike are desperate to enact patches prior to exploit codes becoming available. This bug isn't your average though, it's difficult to correct - it's even making it hard for vendor patching systems to fix - pushing them to their limits.
WHAT IS KRACK?
It's a weakness in the WPA2 system - you may be wondering what that is, well, it's the WI-FI Protected Acesss II, created as a security protocol by the WI-FI Alliance to secure wireless computer networks. KRACK breaks this down and allows attackers to get between your device and a router. Once they are in they are able to mess with non-https traffic (non-secure content)- this can put your computer at risk. Why? It can insert malware onto legit sites, unknowingly allowing you to be even more suceptible to the attack. Good news, the attacker would need to be within the WI-FI range to attack you.
WHY IS IT SCARY?
KRACK is terrifying because it isn't an issue with a single piece of software, it's affecting a widely-used protocol. Any device that supports WI-FI is affected.
WHO IS AT RISK?
Every device that uses WI-FI. Literally.
THE BRIGHT SIDE?
The average person doesn't have to worry about hackers going after their specific networks. Businesses on the other hand should be concerned.
Tech companies are responding to the attack - Microsoft has already addressed the issue by offering a NEW Security Update. Downside, Apple (iOS/macOS), Linux and Android/Google have yet to come up with updates preventing KRACK; only patches.* AppleInsider confirms that KRACK is patched in a beta version of current OS. Google has already promised a bug fix in the next few weeks.
LASTLY, but certainly not least, if you have Circulent, you will have SonicWall on your side - Circulent can use SonicWall VPN Technology to encrypt our clients' network traffic between their wireless devices and their SonicWall firewall.
- For SSL encryption on mobile devices, we can use the SonicWall Mobile Connect Slient Store.