RSS Alerts

Share

More services

Related Stories

  • ICSA Labs intros broadband router security certification scheme
    ICSA Labs has announced it is now security testing and certifying broadband home routers, making the certification lab one of the first to go down this path.
  • TSA probed for wireless security lapses
    The Department of Homeland Security’s Inspector General (IG) recently conducted an audit of the Transportation Security Administration (TSA), concluding that there were “high-risk vulnerabilities involving patch and configuration controls” for its wireless servers and routers.
  • Fortify cautions on new WiFi security threat
    The WiFi Alliance is putting the finishing touches to a peer-to-peer version of its popular WiFi standards. Known as WiFi Direct, the proposed standard allows WiFI devices to link directly to each other, without the need for a router or access point, something which poses a potentially serious security threat to companies with WiFi networks, according to Fortify.
  • Cross-site scripting (XSS) security problem hits broadband routers
    The problem of cross-site scripting (XSS) security flaws - which have affected hundreds of websites this year - has spread to broadband routers, as a security researcher claims that the Thomson wireless box III supplied by O2 leaves internet users "wide open" to the issue.
  • Trend Micro moves IT security onto routers
    Trend Micro, which claims to be the 'number three' IT security software vendor worldwide, has unveiled a new family of applications designed to run on networking routers, rather than computers.

Top 5 Stories

News

US-CERT warns about security flaw affecting millions of wireless routers

30 December 2011

The US Department of Homeland Security has issued a warning about a vulnerability that exposes millions of wireless routers to brute force attacks.

A design flaw in the WiFi protected setup (WPS) specification for the PIN authentication used by many wireless routers “significantly” reduces the time required to launch a brute force attack against the PIN because the flaw allows an attacker to know when the first half of the eight digit PIN is correct, warned the US Computer Emergency Readiness Team (US-CERT) in a vulnerability note.

The lack of a proper lock out policy after a certain number of failed attempts to guess the PIN on wireless routers makes this brute force attack that much more feasible.

“An attacker within range of the wireless access point may be able to brute force the WPS PIN and retrieve the password for the wireless network, change the configuration of the access point, or cause a denial of service”, US-CERT said.

WPS is a standard developed by the WiFi Alliance to ease the set up of a wireless home network. WPS contains an authentication method called “external registrar” that only requires the router’s PIN, US-CERT said.

The vulnerability was reported to US-CERT by researcher Stefan Viehboeck, who said in a blog that the flaw was the result of “few really bad design decisions which enable an efficient brute force attack, thus effectively breaking the security of pretty much all WPS-enabled Wi-Fi routers. As all of the more recent router models come with WPS enabled by default, this affects millions of devices worldwide.”

This article is featured in:
Internet and Network Security • Wireless and Mobile Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012