WiFi no longer secure according to researchers. Check your security now.steemCreated with Sketch.

in #security7 years ago (edited)

It was announced today that a flaw has been found in WPA2 the encryption standard that protects the majority of business and consumer Wifi. I recommend everyone check that their router has been patched. The flaw allows for eavesdropping on your connect. HTTPS should still be safe but you should assume all HTTP is visible now even on secure wifi connections.

US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.

It is also possible that this will allow DHCP spoofing which could allow hackers to modify your DNS. So if you type in your bank website or even steemit.com you maybe presented with a phishing page instead. Be extra careful to check the SSL certificate is valid.

Accessing Certificates Via Address Bar. You can also view an SSL certificate directly from the address bar. Click on the padlock icon to the right of the website's address and then click the "View Certificate" link. The Certificate dialog box will open.

source: http://smallbusiness.chron.com/can-sites-ssl-certificate-57315.html

This arstechnia article has more links https://arstechnica.com/information-technology/2017/10/severe-flaw-in-wpa2-protocol-leaves-wi-fi-traffic-open-to-eavesdropping/

Sort:  

Thanks for this very important security update. I will check if my router is affected by this flaw.

Calling @originalworks :)
img credz: pixabay.com
Nice, you got a 6.0% @minnowbooster upgoat, thanks to @codewithcheese
Want a boost? Minnowbooster's got your back!

The @OriginalWorks bot has determined this post by @codewithcheese to be original material and upvoted it!

ezgif.com-resize.gif

To call @OriginalWorks, simply reply to any post with @originalworks or !originalworks in your message!

To enter this post into the daily RESTEEM contest, upvote this comment! The user with the most upvotes on their @OriginalWorks comment will win!

For more information, Click Here! || Click here to participate in the @OriginalWorks sponsored writing contest(125 SBD in prizes)!!!
Special thanks to @reggaemuffin for being a supporter! Vote him as a witness to help make Steemit a better place!

Thanks for sharing, this is very useful information.

Congratulations @codewithcheese! You have completed some achievement on Steemit and have been rewarded with new badge(s) :

You got your First payout
Award for the total payout received

Click on any badge to view your own Board of Honor on SteemitBoard.
For more information about SteemitBoard, click here

If you no longer want to receive notifications, reply to this comment with the word STOP

Upvote this notification to help all Steemit users. Learn why here!

Do not miss the last announcement from @steemitboard!

Congratulations @codewithcheese! You have received a personal award!

1 Year on Steemit
Click on the badge to view your Board of Honor.

Do not miss the last post from @steemitboard:

SteemitBoard - Witness Update

Support SteemitBoard's project! Vote for its witness and get one more award!

Congratulations @codewithcheese! You received a personal award!

Happy Birthday! - You are on the Steem blockchain for 2 years!

You can view your badges on your Steem Board and compare to others on the Steem Ranking

Vote for @Steemitboard as a witness to get one more award and increased upvotes!

Coin Marketplace

STEEM 0.20
TRX 0.19
JST 0.034
BTC 91295.19
ETH 3130.58
USDT 1.00
SBD 2.89