TidBITS: Apple Has Already Patched the WPA2 KRACK Weakness in OS Betas

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

TidBITS: Apple Has Already Patched the WPA2 KRACK Weakness in OS Betas

TidBITS Articles
Apple Has Already Patched the WPA2 KRACK Weakness in OS Betas

This article was just published by TidBITS and sent to you at your request.

Apple Has Already Patched the WPA2 KRACK Weakness in OS Betas

By Josh Centers
http://tidbits.com/article/17569

Security professionals are fretting over the just-disclosed KRACK flaw, which renders all WPA2-protected Wi-Fi networks vulnerable to attack. Fortunately, MacRumors is reporting Apple told iMore’s Rene Ritchie that it has already plugged the vulnerability in the next betas of macOS, iOS, watchOS, and tvOS. Once Apple releases the current betas, likely in the next few days, those fixes will protect the data sent and received on devices running those operating systems, even if the Wi-Fi router itself remains vulnerable. The real concern with KRACK will come with older devices for which patches don’t become available.

Post a comment

TidBITS members can unsubscribe from just-published articles at http://tidbits.com/subscriptions. TidBITS Talk readers will need to create a filter to delete these articles.

Article copyright © 2017 By Josh Centers . Reuse governed by Creative Commons License.




____________TidBITS Talk Participation Guidelines____________
Post only when you have something substantive to contribute.
Be polite and constructive, and comment on posts, not people.
Quote sparingly, if at all. We all read the previous message.
Start threads with a new message to [hidden email].
Read archives at: http://tidbits.com/pipermail/tidbits-talk/
Unsubscribe at: http://tidbits.com/mailman/options/tidbits-talk
____Mailing List Manners: http://tidbits.com/series/1141 ____
Reply | Threaded
Open this post in threaded view
|

Re: TidBITS: Apple Has Already Patched the WPA2 KRACK Weakness in OS Betas

@lbutlr
On 16 Oct 2017, at 14:38, TidBITS Articles <[hidden email]> wrote:
> Security professionals are fretting over the just-disclosed KRACK flaw, which renders all WPA2-protected Wi-Fi networks vulnerable to attack. Fortunately, MacRumors is reporting Apple told iMore’s Rene Ritchie that it has already plugged the vulnerability in the next betas of macOS, iOS, watchOS, and tvOS. Once Apple releases the current betas, likely in the next few days, those fixes will protect the data sent and received on devices running those operating systems, even if the Wi-Fi router itself remains vulnerable. The real concern with KRACK will come with older devices for which patches don’t become available.

At least according tom many comments online iOOS 11 is not susceptible to this attack, even outside of beta, and neither are Apple Airports. However, this is due to an out of spec implementation flaw as opposed to an actual patch. Windows 10 also appears to be unaffected.Even iOS 10.3.1 and Windows 7 are effectively not vulnerable.

<https://doublepulsar.com/regarding-krack-attacks-wpa2-flaw-bf1caa7ec7a0>

The real issue is and will continue to be Android devices, most of which will never get patched and will remain vulnerable until they are replaced. For mesh or wide WIFI networks that use 802.11r, the routers and Apps will need top be patched. Uniqiti has already released a beta batch for their enterprise hardware and have said a patch for their Amplifi consumer line is coming quickly.

Ah, I stand corrected, they released a patch today for the Amlifi HD since I last checked.

<https://community.amplifi.com/topic/190/krack-wpa2-vulnerability-and-firmware-update>

--
Apple broke AppleScripting signatures in Mail.app, so no random signatures.




____________TidBITS Talk Participation Guidelines____________
Post only when you have something substantive to contribute.
Be polite and constructive, and comment on posts, not people.
Quote sparingly, if at all. We all read the previous message.
Start threads with a new message to [hidden email].
Read archives at: http://tidbits.com/pipermail/tidbits-talk/
Unsubscribe at: http://tidbits.com/mailman/options/tidbits-talk
____Mailing List Manners: http://tidbits.com/series/1141 ____