What can the home user do to help mitigate MitM attack risks, if they are not the firmware updating type?
There’s not a great deal to add to the excellent job done by the researchers who revealed the KRACK attack to the world some weeks ago now. I would wholeheartedly encourage you to go read up at the Manny Vanhoef Key Reinstallation Attacks site. As Manny says “to prevent the attack, users must update affected products as soon as security updates become available. Note that if your device supports Wi-Fi, it is most likely affected. During our initial research, we discovered ourselves that Android, Linux, Apple, Windows, OpenBSD, MediaTek, Linksys, and others, are all affected by some variant of the attacks.” So what can be done for the home user to help mitigate the risk, if they are not the firmware updating type. Well, obviously, educating them as to why they should be is the prime method. Failing that though, apps and gadgets that have shiny LED lighting always do well on the home user engagement front in my experience.
I love these things. Have been recommending the Fing app and Fingbox hardware to my clients for most of this year. Great write up by the way!!!!!
Thanks. I have been using the Fing app for quite a while myself, and recommending it myself. The hardware is a newer addition to my arsenal, but a very welcome one. Thanks for the kind words Claire.