Have a question or want to start a discussion? Post it! No Registration Necessary. Now with pictures!
- Posted on
- John Navas
July 27, 2010, 10:43 pm
rate this thread
Security researchers have discovered security shortcomings in the WPA2
protocol that threaten the security of wireless networks, even if they
are running up-to-date security software.
The hack involves generating arbitrary broadcast packets from a spoofed
node that trick legitimate nodes in a targeted network into responding
with queries that give away information about their secret keys. The
traffic does not, of course, give away the private key directly, but it
does provide enough clues for this information to be extracted by
subsequent cryptanalysis and high-end number crunching.
The attack was discovered by wireless security experts at AirTight
Networks, who found it was possible to spoof the MAC address of a kosher
access point by adding just 10 lines of code to the open source Madwifi
driver and running this software on a standard PC, H Security reports.
However, for the attack to succeed, hackers already need to be internal,
authorised users of targeted networks.
Exploiting the vulnerability, an insider can bypass WPA2 private key
encryption and authentication to sniff and decrypt data from other
authorized users as well as scan their Wi-Fi devices for
vulnerabilities, install malware and possibly compromise those Wi-Fi
- » any access points where I can change the WLAN MAC?
- — Previous thread in » Wireless Networking
- » TalkTalk HG635 on VDSL with multiple static IP addresses
- — Newest thread in » Wireless Networking
- » Re: AT&T and Comcast say they've hit new milestone in fight against robocall...
- — The site's Newest Thread. Posted in » General Telecommunications Forum