Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Secure Wifi Hijacked by KRACK Vulns in WPA2
Newest First  |  Oldest First  |  Threaded View
Agent Aix les Bains
50%
50%
Agent Aix les Bains,
User Rank: Apprentice
8/6/2018 | 9:16:41 AM
Re: WiFi routers
This has still not changed in terms of Wifi security, indeed most logins are never modified by users... That's scary! 
theb0x
50%
50%
theb0x,
User Rank: Ninja
10/22/2017 | 8:26:12 PM
AP Proximity
Physical proximity of the wireless AP is not always required to exploit a client's system. Have you ever observed over Airodump or by other means that when an SSID is stored in their system, it constantly broadcasts all of their recently connected networks? This information can be useful in coordinating an attack utilizing a rogue access point and even the user's whereabouts. Maybe WPA2 TKIP PSK AES is proven to be weak in nature as is since there are also well constructed rainbow tables available though massive in size. Key requirements are only between 8 and 63 characters. But have WAP venders really even bothered to address the issue and severely flawed WPS (Wifi Protected Setup) which in most cases is unknowingly enabled by default? No they haven't. Some firmware's WPS can be exploited even when disabled. I haven't even mentioned covert wireless channels... WPA2 needs to me scratched completely. 

 

 
REISEN1955
50%
50%
REISEN1955,
User Rank: Ninja
10/17/2017 | 1:53:36 PM
WiFi routers
I wonder how many routers in small homes and businesses have the admin password set to something unique other than default values --- which can be found on the web very easily.  I used to drive around my town with Netstumbler and years ago most of them were WIDE OPEN anyway.  


Data Privacy Protections for the Most Vulnerable -- Children
Dimitri Sirota, Founder & CEO of BigID,  10/17/2019
Sodinokibi Ransomware: Where Attackers' Money Goes
Kelly Sheridan, Staff Editor, Dark Reading,  10/15/2019
Tor Weaponized to Steal Bitcoin
Dark Reading Staff 10/18/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-8369
PUBLISHED: 2019-10-21
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
CVE-2019-18224
PUBLISHED: 2019-10-21
idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.
CVE-2019-16985
PUBLISHED: 2019-10-21
In FusionPBX up to v4.5.7, the file app\xml_cdr\xml_cdr_delete.php uses an unsanitized "rec" variable coming from the URL, which is base64 decoded and allows deletion of any file of the system.
CVE-2019-16986
PUBLISHED: 2019-10-21
In FusionPBX up to v4.5.7, the file resources\download.php uses an unsanitized "f" variable coming from the URL, which takes any pathname and allows a download of it. (resources\secure_download.php is also affected.)
CVE-2019-16987
PUBLISHED: 2019-10-21
In FusionPBX up to v4.5.7, the file app\contacts\contact_import.php uses an unsanitized "query_string" variable coming from the URL, which is reflected in HTML, leading to XSS.