This month, a Grand Canyon-sized hole in WPA2 WiFi security protocol was discovered—and, it’s a vulnerability that has the potential to spell catastrophic consequences for organizations and their mobile workforces.
So, what does the threat mean to you? And, more importantly, how can you use WiFi safely?
Let’s dig in.
KRACKS is a threat to your data security
Leveraging Key Reinstallation AttaCKs, or KRACKs, to skirt WPA2 network security, hackers can sidle up to anyone logged onto a wireless network and steal their private data—data they thought had been encrypted, like login credentials, emails, and credit card numbers.
As if that weren’t enough, hackers can further exploit those insecure connections to inject malware into websites. (You know, there’s nothing like pouring a little salt into an open wound.)
It was Mathy Vanhoef, a computer security researcher, who first discovered the WiFi vulnerability. He noted, “If your device supports WiFi, it is most likely affected. In general, any data or information that the victim transmits can be decrypted… Additionally, depending on the device being used and the network setup, it is also possible to decrypt data sent towards the victim (e.g. the content of a website).”
That said, it’s Linux and Android devices which are proving to be most susceptible to attack.
KRACKS begs the question: Is WiFi ever safe?
Research is finding that our security measures aren’t as secure as we might have hoped.
For example, while only visiting web pages and apps that leverage HTTPS should provide protection, that protection relies upon those sites and apps being correctly configured.
And, of course, that’s not always the case.
The extent of the problem is addressed in this study, published by researchers at Stanford and University of Texas at Austin. Give it a read and learn just how broken SSL certificate validation really is. (Just don’t blame us when you can’t sleep at night.)
How to use WiFi safely (as you can)
For starters, make sure that you address your KRACKS vulnerability and immediately patch your devices—if a patch is currently available. (As of the time of this writing, modern Linux distros and Windows and iOS 11 have all released security patches.)
If, however, you have an older Apple device and cannot upgrade to iOS11—or you have an Android device that the manufacturer doesn’t plan to patch right away, you should never use it to access any sensitive information over WiFi.
Beyond the KRACK threat, we recommend you rigorously adhere to these WiFi security best practices:
- Immediately install all software updates and security patches as they become available
- Don’t use your mobile device to access sensitive information over WiFi, especially banking apps and password managers
- Send all of your data over a secure VPN for another layer of encryption separate from HTTPS and WPA2
- Don’t use public WiFi, ever
- Only visit websites and apps that use HTTPS—avoid anything that doesn’t employ this security protocol like the plague
From the broader organization perspective, we also recommend taking these steps:
- Use SFTP/SSH when pushing files to a server for an added layer of encryption—never use FTP which sends passwords via plaintext
- Whitelist your organization’s secure VPN IP address to ensure hackers can’t login with stolen credentials, unless they also gain access to the VPN
There’s no such thing as safe anymore.
So, take proactive steps, remain vigilant, and do the best you can. That means avoiding insecure connections and employing a layered defense with HTTPS, WPA2, and VPN.
Your business critical systems, applications, and data are under a constant state of threat. In fact, a recent Cybersecurity Ventures report finds that a ransomware attack occurs every 40 seconds—and by the end of 2019 an attack is projected to occur every 14 seconds. It’s clear that you need a vigilant army of end users…
There it is—the ransomware lockscreen staring you down with its arrogant gaze, just begging you to cry, “Uncle!” So much for your pleasant morning cup of coffee. So, now what? What steps should you and your IT department take to mitigate the damage and restore your data? The answer is: It depends. Here are some…
It’s a never-ending battle: Hackers relentlessly look for a way into your digital house, you work overtime, boarding up the windows. Meanwhile, your employees stand in the threshold graciously offering their up their keys. We know employees are the primary cause of data breaches—and that login credentials are almost always employed at some phase of…
“We’ve been compromised.” Those three little words are sure to keep you tossing and turning at night. Maybe an unauthorized user has accessed your data. Perhaps you’ve discovered an end user’s screen being recorded. Maybe your critical business applications have been encrypted by ransomware. It’s the stuff of nightmares. So, how do you return to…