How to Hack any WPA2 WiFi network using KRACK (video)

17 Oct 2017
How to Hack any WPA2 WiFi network using KRACK

Hack any WPA2 Wifi network on any laptop, PC or Android smartphone using KRACK tool

WPA 2(WiFi Protected 2) is a security protocol and security certification program developed by the Wi-Fi Alliance to secure wireless computer networks. WPA 2 which came into existence in 2004 and is a common shorthand for the full IEEE 802.11i (or IEEE 802.11i-2004) standard.

According to researchers, they have found evaluative liability that helps attackers to decode the password and enter into the network within the physical range of the network. The process clicks the victim to reinstall an already in use key.This is achieved by manipulating and replaying cryptographic handshake messages. As the victim reinstalls they key, transmit packet number (i.e. nonce) and receive packet number (i.e. replay counter) are reset to their initial value.

The process is further followed by 4-way handshake which negotiates to achieve a fresh encryption key It will install this key after receiving message 3 of the 4-way handshake. Once the key is installed, it will be used to encrypt normal data frames using an encryption protocol. However, because messages may be lost or dropped, the Access Point (AP) will retransmit message 3 if it did not receive an appropriate response as the acknowledgment. As a result, the client may receive message 3 multiple times. Each time it receives this message, it will reinstall the same encryption key, and thereby reset the incremental transmit packet number (nonce) and receive replay counter used by the encryption protocol.

Krack attack is also applicable to all Morden networks WPA and WPA2. The products affected by this attacks- Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and more. Krack attack also helps attackers to steal your personal information like credit cards, passwords, photos, email, etc.

Around 41% of Android device is affected by this attack, the attack can also insert unwanted data which can harm your device said, researchers. The Krack attack is commonly used on Linux and Android (6.0 and above).

Disabling functionalities such as client mode and 802.11r (fast roaming) can protect your router. Home users advised to update their WiFi compatible devices including computers and smartphones.

The Krack attack has infected Windows, Apple, Android, Linux, etc. However, Krack attack is not easy to implement. Also, it isn’t that easy to fix either because it exploits a fundamental loophole in the way WPA2 key reinstallation occurs.

Windows users nothing to worry about as Microsoft has already issued a security patch related to KRACK attack as a part of the Patch Tuesday update on October 10. But Microsoft isn’t the first in line to address the issue. OpenBSD released a security patch way back in July. Also, as seen on Charged, a security patch is now available for Linux. Debian systems can be updated with the same. Also, security patches for Ubuntu 14.04 and above are out now. The same for Gentoo are also available.

Not to worry Android users Google will have a security update for the same in the future, while Apple is testing its security update on macOS, IOS, watchOS in their beta versions.

Nothing to worry about as the security update will fix this soon of all platforms.


Leave a reply