Slashdot Mirror


A New Wi-Fi Exploit, Limited But Clever

eggboard writes "Martin Beck, who in 2008 co-wrote a paper describing a way to inject packets into a secured Wi-Fi system, is back with a more extensive exploit. His 'Enhanced TKIP Michael Attacks' still don't allow extraction of a key, and are limited to TKIP (not AES-CCMP) WPA-protected networks. Still, he's figured out how to put in large payloads, and to extract data sent from an access point to a client — all without cracking the network key. The attack requires proximity to sniff and inject data, but it's another crack in the older key standard (TKIP) that no one with serious security interests should still be using." Here is Beck's paper (PDF) describing the new attacks.

2 of 77 comments (clear)

  1. That would be the HBC by Anonymous Coward · · Score: -1, Troll

    Harry Butt Crack.

  2. Re:Use a MAC address filter by Anonymous Coward · · Score: -1, Troll

    Using WPA or MAC address filters would be like arguing that putting a thumbtack on the floor outside a fortress enhances it's security. Objectively undeniable, but still laughable. Sure it will help keep stupid little kids out of your fortress, but those are not the type of people who could never get past the giant walls, moats, archers, etc your actual fortress security employs. On the other hand, this tack, not being in the fortress standards, might actually manage to make miserable the life of a well intentioned, if stupid, servant, guard, etc.

    So what you're saying is that if I carefully place my metaphorical thumbtack in a strategic position on my fortress' porch I'll hear you laughing when you're trying to hack into my wireless network? Well, the jokes on you because I have several wireless devices broadcasting on different SSID's that are merely decoys to thwart your dastardly efforts while I connect to the internet via a bright red cable.

    If you don't believe me you can see for yourself. There's a key under the mat - just let yourself in.