Cyber security news for all


    An update closes security gaps in WLAN encryption

    Security researchers are discovering a dangerous security gap in WLAN chips that are found in over million devices. IPhones and Samsung Galaxy smartphones are also affected. Users should check their devices immediately.

    The IT security companies have discovered a critical security vulnerability in WLAN chips. Attackers could actually use the Kr00k vulnerability to spy on encrypted transmitted information or even inject their own data packets.

    According to security researchers, the chips are in more than a million WLAN-enabled devices worldwide, such as smartphones, tablets, access points or routers. This also applies to WLAN networks in companies. Therefore, even environments with patched client devices are vulnerable.

    WLAN security gaps

    In tests, the researchers found that such popular devices as iPhones, iPads and MacBooks, as well as smartphones from Samsung and Xiaomi, have chips with the security hole. Access points from Huawei are also affected.

    Not Recognizable For Users

    The vulnerability exploits a process that is supposed to remedy interruptions in the WLAN transmission. For most users it is indistinguishable whether a malfunction is caused by a weak signal or an attack by Kr00k.

    There are therefore already updates that close the gap. All owners of a device susceptible to Kr00k should therefore check as soon as possible whether they have already received an automatic update and if necessary, initiate a manual update. The security gap should be closed for most affected smartphones. The same applies to Mac computers.

    Kr00k Vulnerability: You Should Do This

    Software updates can fix the error. A spokesman emphasized that the security vulnerability had been reported to the chip manufacturers, who had already responded: Numerous manufacturers have already released updates for affected devices. All owners should update their devices immediately, unless this is done automatically.

    Recent Articles

    Vodafone experiences a vulnerability with fatal effects

    The injected JavaScript can access the session cookies from Vodafone website and send them to a server. An attacker can take over the session...

    Maze leaks data on its own platform

    The Maze ransomware has been up to almost a year and a half. This week, security experts warned about the actions of the cyber...

    Emotet to spread the malware behind email archives

    If you find an attached pack to an email these days, you should be particularly careful: the highly developed malware Emotet could be lurking...

    500,000 Activision accounts have been leaked

    Activision has taken a position on the alleged leak. According to the publisher, there has never been a data leak. In some cases it is...

    Judge issues injunction against WeChat

    The US government wanted to take action against the app WeChat. A judge stood sideways. The app should disappear from the platforms in the...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox