Quoted in The Verge
US-CERT has become aware of several key management vulnerabilities in the 4-way handshake of the Wi-Fi Protected Access II (WPA2) security protocol. The impact of exploiting these vulnerabilities includes decryption, packet replay, TCP connection hijacking, HTTP content injection, and others. Note that as protocol-level issues, most or all correct implementations of the standard will be affected. The CERT/CC and the reporting researcher KU Leuven, will be publicly disclosing these vulnerabilities on 16 October 2017.
I think we are all pretty well phucked now. This comes right at the point when Wi-Fi is pretty much the standard internet connection in homes and businesses. I knows plenty of people that never connect an Ethernet cable.
The Information Age is being hacked from the ground up. The future will be a pretty interesting place but I’m interested if anyone will trust computers by the time we get there.