Search
WPA2 Key Reinstallation Vulnerabilities (KRACK) Explained
Posted by Hemant Chaskar on Oct 16, 2017
WPA2 Vulnerability.png

Researchers from the University of Leuven (@vanhoefm and team) have discovered flaws in WPA2 implementation in clients and APs. These flaws create vulnerabilities for replay and decryption attacks on packets transferred over WiFi links. They have named them KRACKs (Key Reinstallation AttaCKs). Both 802.1x (EAP) and PSK (password) based networks are affected. These vulnerabilities have been cataloged under 10 CVEs. In the series of videos below, I explain these CVEs in detail with Vivek Ramachandran, Founder and CEO of Pentester Academy.

Posts by Topic

see all
free-on-demand-webinars.png
4 Ways to Supercharge Your Outdoor Wi-Fi
Posted by Sriram Venkiteswaran on Aug 4, 2015

Great news: you can now have outdoor Wi-Fi that is easier to manage, more secure, and increases revenue.

Top Reasons to Use Wi-Fi Zoning Analytics
Posted by Sriram Venkiteswaran on Jul 27, 2015

How well do you know your customers and patrons? Do you know where they spend the most time in your building? Can you say what the busiest areas are throughout the day?

10 Lessons for Retailers from Recent Security Reports
Posted by Freddy Mangum on Jun 16, 2015

Recent security reports from Verizon and new data from Mary Meeker of Kleiner Perkins Caufield & Byers have important security lessons for retailers. This blog summarizes key findings from these two widely respected sources.

Zone-based Wi-Fi Analytics Made Easy
Posted by Sriram Venkiteswaran on Jun 11, 2015

Introducing Mojos Zoning feature integrated zone-based Wi-Fi analytics

PCI Compliance and Wi-Fi: Friends or Foes?
Posted by Robert Ferruolo (Dr. RF) on May 28, 2015

This is part three of our blog series dedicated to wireless PCI compliance; in this installment we focus on deployment best practices and common misconceptions. Read part 1: New PCI 3.1 Guidelines Address SSL Vulnerability and part 2: 3 Trends Impacting Wireless PCI Compliance

3 Trends Impacting Wireless PCI Compliance
Posted by AirTightTeam on May 21, 2015

This is part two of the three-part blog series dedicated to wireless PCI compliance, which is a hot topic for retailers and other enterprises that accept payment cards. Read part 1 of the series: New PCI 3.1 Guidelines Address SSL Vulnerability; part 3: PCI Compliance and Wi-Fi: Friends or Foes?

How to Hit a Home Run with iBeacon
Posted by Sriram Venkiteswaran on Apr 23, 2015

iBeacon has been getting a lot of attention lately mainly because of claims of how it can transform the retail industry. After having talked to many retail customers, iBeacon technology providers, and others closely associated to this eco system, it occurred to me that iBeacon and baseball have a lot in common.

New PCI 3.1 Guidelines Address SSL Vulnerability
Posted by AirTightTeam on Apr 23, 2015

On April 15, the PCI Security Standards Council (PCI SSC) published PCI Data Security Standard (PCI DSS) Version 3.1 and supporting guidance. The revision addresses vulnerabilities within the Secure Sockets Layer (SSL) encryption protocol that can put payment data at risk.

How Does Restaurant Wi-Fi Pay for Itself?
Posted by AirTightTeam on Apr 8, 2015

Wi-Fi networks are a workhorse for internal restaurant operations. But when properly designed and implemented, they can also be highly lucrative, driving both customer loyalty and revenue.