Apple has already patched the ‘KRACK’ WPA2 Wi-Fi security flaw iOS, macOS, watchOS, and tvOS betas

36 Comments

“Apple has already patched the WPA2 Wi-Fi KRACK exploit announced today in iOS, macOS, watchOS, and tvOS betas, reports Rene Ritchie [via Twitter],” iClarified reports.

“Discovered by security researcher Mathy Vanhoef,” iClarified reports, “the method of using key reinstallation attacks (KRACKs) allow attackers to read information that was previously assumed to be safely encrypted and steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on.”

iClarified reports, “You can learn more about the KRACK exploit by clicking here.”

https://twitter.com/reneritchie/status/919988216501030914

Full article here.

MacDailyNews Take: This is mainly an Android problem because Android is a stolen product that was initially supposed to be a BlackBerry knockoff which, after Steve Jobs revealed the iPhone, was hastily cobbled-together to mimic Apple’s revolutionary and patented Multi-Touch™ device. This hasty corner-cutting resulted in <a href="” target=”_new”>something that was and remains so poorly implemented that even the simple act of delivering software updates is in many cases never achieved leaving those who ignorantly settle for Android dreck vulnerable to myriad and unending security lapses and privacy intrusions.

SEE ALSO:
‘KRACK’ WPA2 security flaw puts nearly every Android device at risk of hijack via Wi-Fi – October 16, 2017
How to upgrade from Android to a real Apple iPhone – August 21, 2017
Russian hacker gang robbed Russian banks with over one million hacked Android phones – May 22, 2017
36 widely-used Android devices ship with malware preinstalled – March 14, 2017
The cost of free: More than one million Google Android devices hit by malware – November 30, 2016
Secret backdoor in U.S. Android phones sent location, text, contact data to China – November 15, 2016
Bad news for Fragmandroid: FCC and FTC launch inquiry over mobile security updates – May 10, 2016
Google’s flawed Android is essentially unfixable – May 2, 2016
Apple’s deep commitment to security – April 18, 2016
Apple: We have the ‘most effective security organization in the world’ – April 16, 2016
85% of mobile device failures occur on Android, with Samsung leading the way – February 23, 2016
More than 90% of Android devices are running out-dated, insecure operating system versions – January 27, 2016
Dangerous new zero-day flaw affects more than two-thirds of all Android devices – January 20, 2016
Android malware steals one-time passcodes, a crucial defense for online banking – January 14, 2016
New Android malware is so bad, you’d better off buying a new phone – November 6, 2015
New Android malware strains to top 2 million by end of 2015 – July 1, 2015
Symantec: 1 in 5 Android apps is malware – April 25, 2015
Kaspersky Lab Director: Over 98% of mobile malware targets Android because it’s much, much easier to exploit than iOS – January 15, 2015
Security experts: Malware spreading to millions on Android phones – November 21, 2014
There’s practically no iOS malware, thanks to Apple’s smart control over app distribution – June 13, 2014
F-Secure: Android accounted for 99% of new mobile malware in Q1 2014 – April 30, 2014
Google’s Sundar Pichai: Android not designed to be safe; if I wrote malware, I’d target Android, too – February 27, 2014
Cisco: Android the target of 99 percent of world’s mobile malware – January 17, 2014
U.S. DHS, FBI warn of malware threats to Android mobile devices – August 27, 2013
Poor man’s iPhone: Android on the decline – February 26, 2015
Study: iPhone users are smarter and richer than those who settle for Android phones – January 22, 2015
Why Android users can’t have the nicest things – January 5, 2015
iPhone users earn significantly more than those who settle for Android phones – October 8, 2014
Yet more proof that Android is for poor people – June 27, 2014
More proof that Android is for poor people – May 13, 2014
Android users poorer, shorter, unhealthier, less educated, far less charitable than Apple iPhone users – November 13, 2013
IDC data shows two thirds of Android’s 81% smartphone share are cheap junk phones – November 13, 2013
CIRP: Apple iPhone users are younger, richer, and better educated than those who settle for Samsung knockoff phones – August 19, 2013

36 Comments

  2. You guys are all over the place on this one. It’s Android-only on previous post (and this one), Apple fixed their problem, but it’s out on the unreleased beta.

    Soup to nuts you blame the interns, or is it nuts to soup?

    Reply

        1. Not everyone uses Apple Airport routers so I’m sure some patches are required in software as well on the device side, but Apple can deliver patches quickly and easily. I’m not worried about it. I’ve read this is patched in Windows as well. The trouble spot seems to be Android, much harder to deliver updates I would think.

        3. IT department? I don’t follow. The nature of Android is that some stuff never gets fixed, people just live with it. You get what you pay for and you live with the trade offs. Android’s not a bad choice, but it’s not what I need.

        4. Apple directly controls, hardware, OS, and sets software policy. How is it not the IT department for all iOS? And they charge a premium for it. If you tell me that’s a benefit, it’s only a benefit as long as they own the problems that arise as well.

        8. If I want an app I buy the app and then I have the app. I’ve never once wanted an app for something and not been able to get it, on Mac or iOS. There are over two million apps for iOS, so much choice its crazy. I don’t have an IT department involved in managing my devices, it’s just me. You’re a bit of a loon aren’t you?

        10. What apps that aren’t allowed? There are over two million apps available, I can get an app for everything I need. You should take off that tinfoil hat. Apple is the IT department! Abiding! Control! Do you know how nuts you sound?

        11. @No Worries
          Surely you’ve heard of the (in)famous App Approval Process…
          Taste aside, many APps have been forbidden for various reasons such as lampooning public figures, confederate flags, etc., etc., etc. Normally that is a store’s right, problem is, the “IT Department” owns the store and it’s the only store. iOS is totally managed as I said before. If Apple sn’t want you to have an App, you can’t have it.

        12. You’re seeing conspiracy where there is none. There’s overwhelming choice when it comes to iOS apps. There’s no entity named “Apple” plotting to keep you from using this app or that app (you talk about Apple as if the company is a person, that’s a bit disturbing). Any marketplace needs rules, so the app store has some, and they make sense. I’m fairly sure your examples are the exception, but people who wear tinfoil hats tend to latch onto one thing and repeat it over and over and over. Amazon and Walmart also banned the confederate flag, for good reasons. Do you have anything in the way of actual evidence? Meaning there’s a serious lack of apps, not just a handful that were rejected (no approval process is perfect, you can’t use mistakes and human error to prove a point). I’m just not seeing it, with over two million apps, you’re basically complaining on principle, which again is what the tinfoil hat crowd does. I bet you think Ayn Rand has some neat ideas.

        13. This is too good, both the examples you gave, not only were those old stories, both apps that were in the headlines for being rejected are in the app store today. What was that I was saying about the tinfoil hat crowd clinging to something and repeating it over and over and over. LOL.

        14. @No Worries
          No, not conspiracy. They are not conspiring. They are dictating directly and by fiat. Just like an IT department.

          You need Apple’s permission, that is enough. Deny all you like, facts are facts. iOS is an Apple censored environment.

        16. “They are dictating directly and by fiat. Just like an IT department.”

          I guess I didn’t get the memo because I do whatever I like with my Apple devices. You’re just plain cuckoo man. You fail to make an argument, you just repeat your tinfoil hat ravings over and over, even after it turns out your two examples of rejected apps are still in the app store. You remind me of that Star Trek movie, “Khan, I’m laughing at the superior intellect.” Have fun with your tinfoil hat. It looks good on you at least.

        17. @No Worries

          Not to burden you with facts, but…
          http://www.telegraph.co.uk/technology/apple/10226145/The-apps-that-Apple-does-not-want-you-to-use.html
          (a small sampling)

          The walls are tall with you, so tall you can’t see past them and you believe the whole world is contained within them. You can choose from what you are ALLOWED to choose within those walls, however big you may believe that to be.

          When a ship sails past the horizon, it did not fall off the edge of the earth. And tinfoil was produced in a supernova well outside the solar system…

        18. That list of rejected apps you provided only makes you seem crazier. I sure am missing out not being able to get an app that allows me to paste a picture of my head on various holy figures bodies. Or the app that when I smudge my screen an animated girl in a bikini pops up and cleans the screen. Truly useful stuff there genius.

        20. Yeah, what if Apple reactivated DRM-which they can do- at the flip a switch?
          Apple can push stuff in ways other than the usual. There acre certainly back doors. Apple is now also using activation and could de-authorize your devices and computers any time they want.

        21. Lots of things could happen in any number of situations. I prefer not to wear a tinfoil hat and see conspiracy around every corner or malevolence in every action. You people know Apple isn’t a person right?

    1. If only the client is ‘fixed’ isn’t the data transmission still vulnerable since the router/hotspot has not been? In Apple’s case perhaps they can update their branded devices on both ends but for iOS devices using cellular/public hotspots wouldn’t the transmission still be unsecure?

      Reply

      2. For most cheap routers you’re SOL. The better ones will be able to be updated, but you’ll still have to wait for them to do it. Some of the cheap ones are pretty much swiss cheese already, even before this crack.

        Fortunately on the iPhone almost all your network traffic is encrypted before it gets to the router.

        Reply

  4. And what does this mean for John Doe average computer user who understands nothing of this? How does he go about checking/fixing possible issues? Like… does this affect my home (non-airport) wireless network?

    Reply

      1. Well… not to be argumentative, but I was just reading about the issue this morning.

        According to the article I read, this should not be an issue for most home users unless their router is being used in bridge mode, which most are not by default.

        Reply

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Tags: , , , , , , , , , , , , , , ,