Print
Category: News

Washington, DC - You’ve read recent news stories about a vulnerability discovered in the WPA2 encryption standard. (Some reports refer to it as KRACK – Key Reinstallation Attack.) Should this be of concern to your business? Yes. Does it warrant further action at your company? Absolutely.

If you or anyone at your business uses a smartphone, laptop, or IoT device connected to a Wi-Fi network, the information sent over that network could be at risk. Researchers have found a bug that lets attackers “break” WPA2 – the encryption that protects most wireless networks – leaving data you send exposed.

The bad news is that this isn’t just a problem with a specific device or manufacturer. It’s a problem with the encryption standard nearly all Wi-Fi devices on the market use to scramble communications, prevent eavesdropping, and deter tampering. The chilling upshot is that if anyone at your business uses a device to connect to a wireless network at work, at home, or on the road, this bug means they can’t rely on that connection being secure.

The good news is that the bug can be fixed with a security update or patch. Device manufacturers and software companies are aware of the problem and updates are rolling out now. Keep an eye out for authorized fixes from your device or software company.

In the meantime, connections other than Wi-Fi (like your smartphone’s 4G/3G carrier connection or a connection with an Ethernet cable) aren’t affected. So consider using them instead of Wi-Fi until the updates are available.

Even so, this bug is a reminder that there’s no single solution to secure your data, and all of the other tips for protecting your sensitive information and security online are more important now than ever, including: