As news of researcher Mathy Vanhoef released information on KRACK (for Key Reinstallation Attack) is blown out of proportion by all of the major news sources our inbox has been full of worried clients and friends.
The bottom line is that Wi-Fi attacks are nothing new, and that this one only effects people using the Wi-Fi Protected Access 2 (WPA2) encryption protocol, which, admittedly is most everybody that has a password on their router.
This attack does not scale at this point so no need to panic, but it couldn’t hurt to make sure all of our devices are updated and be on the look out hardware patches. Additionally change your password to something more secure! Our clients never want to hear this, but choosing a unique, secure password might be inconvenient but it is also one of the easiest most effective way to be more secure. Oh – and if you haven’t ( which would mean that you aren’t a client ) Disable the Wi-Fi Protected Setup (WPS) on your router!