For many people, Wi-Fi is hard to leave as water and air.

But recently, Wi-Fi has been exposed to significant security vulnerabilities.

Key Reinstallation Attacks Breaking WPA2 by forcing nonce reuse

According to the researcher Mathy Vanhoef from University of Leuven, security protocols that protect wireless networks have been hacked, potentially allowing hackers to monitor any communications connected to an Internet device.

Mathy Vanhoef said the weaknesses are in the Wi-Fi standard itself, and not in individual products or implementations. During initial research, it is discovered that Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and others, are all affected by some variant of the attacks.

In another word, as long as your device supports WiFi, then the weakness will affect you, the attacker can easily steal users’ credit card numbers, passwords, chat messengers, photos and emails without cracking Wi-Fi password.

• All major manufactures launched patches deal with the weakness

1, Apple’s latest beta of iOS, MacOS, WatchOS and TVOS has fixed the bug.

2, Microsoft says it has already fixed the problem for customers running supported versions of Windows. Windows have released a security update to address this issue. Customers who apply the update, or have automatic updates enabled, will be protected, and the company withheld disclosure until other vendors could develop and release updates.

Microsoft has already fixed the Wi-Fi attack vulnerability 

• Authoritative department: Risk is controllable, no need to change the password

The authority of 360 total security issued that at present the risk of this vulnerability is under control. Users do not need to be panic or change the Wi-Fi password, and timely updating the firmware of the terminal, router and other devices to effectively defend against it.

• How should individual user respond?

1, Use less Wi-Fi and more 4G. Do not randomly connect to unknown Wi-Fi in public places to avoid unnecessary losses.

2, Be sure to update. Pay attention to the firmware upgrade information of the phone, computer and router, etc., and update the software version of all WPA2 wireless authentication client devices in time.

• Protect your privacy from data mining

An introduction into data mining

As we learned in Class 15, with the development of Internet and E-commerce，the data mining is an ubiquitous phenomena. When we do shopping online or using social media, we should pay attention to personal privacy.

Data mining your personal info from the Internet

3 types of information which should not post on social media:

1, Train tickets, plane tickets, boarding check. The bar code or QR code includes the personal information of passengers.

2, Passport, house key, plate number. Those photos will tell your special location at special time and your daily life circle.

3, The photos and name of children and olds. Those information will help lawbreaker      recognize children or olds easier. It is better if you set up special groups who are able see those pictures.

 

Word Account: 442