https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7602#M930 <HTML><HEAD></HEAD><BODY><P>In terms of specific products that may have potentially been impacted by KRACK:&nbsp;<A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk120938" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk120938">Check Point response to WPA2 Key Reinstallation Attacks (KRACK)</A>&nbsp;</P><P>More general commentary is forthcoming.</P></BODY></HTML> Mon, 16 Oct 2017 19:32:28 GMT PhoneBoy 2017-10-16T19:32:28Z https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7600#M928 <HTML><HEAD></HEAD><BODY><P>As we are living the "fallout" from the recently disclosed KRACK (Key Reinstallation AttaCK) vulnerabilities, I would like to know if anyone has any additional information or insights about it and also what Check Point has to say about it...&nbsp;</P><P></P><P>KRACK is an attack that targets the WPA2 (Wi-Fi Security Protocol) 4-way handshake and allows the attacker to do many nasty things like MITM, SSL strip, inject malicious data into communications, etc. The big issue here is that almost every implementation of WPA2 is affected, so all(most)&nbsp;of our Wi-Fi enabled devices (including our loved IoT) are&nbsp;at risk.</P><P></P><P>Details about the KRACK (official website):</P><P><A class="link-titled" href="https://www.krackattacks.com/" title="https://www.krackattacks.com/">KRACK Attacks: Breaking WPA2</A>&nbsp;</P><P>POC Video:</P><P><A class="link-titled" href="https://www.youtube.com/watch?time_continue=265&amp;v=Oh4WURZoR98" title="https://www.youtube.com/watch?time_continue=265&amp;v=Oh4WURZoR98">KRACK Attacks: Bypassing WPA2 against Android and Linux - YouTube</A>&nbsp;</P><P></P><P>Any additional thoughts here are welcome, including advisories about mitigations and what to do.</P><P></P><P>Thank you.</P></BODY></HTML> Mon, 16 Oct 2017 18:06:02 GMT https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7600#M928 Fabian-Antunes 2017-10-16T18:06:02Z https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7601#M929 <HTML><HEAD></HEAD><BODY><P>We are planning some communications around this topic...stay tuned <img id="smileyhappy" class="emoticon emoticon-smileyhappy" src="https://community.checkpoint.com/i/smilies/16x16_smiley-happy.png" alt="Smiley Happy" title="Smiley Happy" /></P></BODY></HTML> Mon, 16 Oct 2017 18:37:27 GMT https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7601#M929 PhoneBoy 2017-10-16T18:37:27Z https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7602#M930 <HTML><HEAD></HEAD><BODY><P>In terms of specific products that may have potentially been impacted by KRACK:&nbsp;<A class="link-titled" href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk120938" title="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk120938">Check Point response to WPA2 Key Reinstallation Attacks (KRACK)</A>&nbsp;</P><P>More general commentary is forthcoming.</P></BODY></HTML> Mon, 16 Oct 2017 19:32:28 GMT https://community.checkpoint.com/t5/General-Topics/KRACK-Attack/m-p/7602#M930 PhoneBoy 2017-10-16T19:32:28Z