Finally, thanks to Google issuing a fix, Android users no longer need to worry about the dreaded KRACK cybersecurity vulnerability that can be exploited by hackers to hijack connections, decrypt Wi-Fi traffic, and eavesdrop on communications.
KRACK is short for Key Reinstallation Attack, and it basically put all wireless-enabled devices at risk. There was a fundamental flaw in WPA2, which is a common protocol used in securing modern wireless networks that allows a device that uses a pre-shared password to seamlessly join the network. Due to a bug, a skilled hacker had the ability to join the network without having to know that password.
In essence, this bug is a complete breakdown of the WPA2 protocol and represents a huge risk to both personal and enterprise users.
Mathy Vanhoef, a computer security academic who discovered the flaw, ensures us there is no reason to panic, since he hasn’t released any proof-of-concept exploit code that hackers could use to conduct widespread attacks. However, do keep in mind that devices running Android 6.0 and above are particularly vulnerable. Kevin Beaumont, a cybersecurity researcher, added that KRACK only affects Android users, and that Windows and iOS users are largely immune to the flaw.
The big companies have already released the fixes, so there is no need to worry if you’re updating your devices on a regular basis. Apple released a fix for KRACK during the last week, and recently, Google issued a fix as well. The security update also contains a fix for other critical bugs.