‘KRACK’ WiFi Attack could put your information at risk

New cybersecurity research has revealed a vulnerability in the WPA2 (Wireless Access) security encryption protocol. Since many modern devices and wireless routers rely on WPA2 to encrypt WiFi traffic, chances are good that your devices may have also been affected.

“You should update your computers and phones immediately or as soon as an update is available,” said Shakeel Khan, manager of IT Security Risk and Compliance. “This can be accomplished through a manual update or enabling automatic updating.”

Microsoft currently has a working patch that is available through Windows Automatic Update. Apple has a patch for iOS, macOS, watchOS and tvOS that are in beta, and will be rolling it out in a software update in a few weeks.

In addition to computers and phones, other wireless devices could also be impacted including Wi-Fi TVs, printers, and routers. The most vulnerable so far appears to be Android devices. Be sure to update these devices when a fix becomes available.

SANS Institutes suggests that the simplest way to protect yourself is simply not to use Wi-Fi but instead either tether your device to a mobile device or use a wired connection to the network.

Khan said additional suggestions included avoiding public Wi-Fi access points. If there is a need to use public Wi-Fi, make sure to utilize a virtual private network (VPN).

For more details, check the Information Technology page regarding VPN access requests.

Like
Like Love Haha Wow Sad Angry
Written by
Nick Garrett

Nick Garrett is a communications coordinator in the Division of Communications & Marketing at Augusta University. Contact him at 706-446-4802 or ngarret1@augusta.edu.

View all articles
Written by Nick Garrett

Jagwire is your source for news and stories from Augusta University. Daily updates highlight the many ways students, faculty, staff, researchers and clinicians "bring their A games" in classrooms and clinics on four campuses in Augusta and locations across the state of Georgia.

graphic that says download jag mobile with icon buttons below that say download on app store and download on google play with a picture of a phone