Blackfoot Newsflash – WPA2 Krack Vulnerability

Security researchers have publicised a serious vulnerability in WPA2, the encryption protocol relied on by most Wi-Fi networks.

On 16th October, security researchers announced a serious vulnerability in the WPA2 protocol. They have named the vulnerability KRACK (Key Reinstallation Attack).

The vulnerability was first discovered in 2016, and after further research was disclosed to vendors in July and August 2017. Exploiting the vulnerability involves conducting a man in the middle (MiTM) attack in order to trick the victim’s device into reinstalling an already used key. This is done by manipulating and replaying cryptographic 4-way handshake messages.