In the wake of the recently found multiple vulnerabilities of the Wi-Fi Protected Access II (WPA2), protocol experts in cybersecurity are stressing on immediate upgrading of firmware and change of router passwords by not just free hotspot providers but also personal users in households and offices.
According to the vulnerability note issued by the CERT-In, any Wi-Fi enabled device using the (WPA2) security protocol used by Wi-Fi routers, that wirelessly connect various devices to a network, can be exploited by an attacker within its network range.
Also, intruders can eavesdrop on communication between the devices in network and steal sensitive information through unsafe web sessions while accessing Internet banking, making payments and others.
Any device connected to routers at households and offices generally used by fewer people is also at risk, says I. Lakshminarasimha Rao, Manager, Information Security Education and Awareness Project, CDAC, Hyderabad.
“Router owners should immediately change the passwords and stop broadcasting SSIDs. Also, they should look for firmware updates provided by the affected manufacturers of their websites. Most of the users think their device will not be exploited, but anyone in the device’s range can attack it and steal sensitive information from connected devices like phones and laptops,” he said. Wi-Fi router users need to visit the websites of their manufacturers and download and install the last firmware provided.
Free Wi-Fi providers
Meanwhile, the free and public Wi-Fi Internet providers in the city are upgrading their firmware following the vulnerability reports. Such Internet is provided in public places like the airport, bus station, railway station, M.G. Road and other major junctions by the government.
“We are providing Wi-Fi Internet at about 8,000 locations in the country and safe browsing for the users is assured. So far no issues of misuse of the Wi-Fi network has been reported and our infrastructure and firmware is up to date,” said Quadgen Wireless Solutions General Manager P.V. Subba Rao. Quadgen in collaboration with the BSNL has been providing Wi-Fi Internet in the city’s bus station for three years.
A representative of Cisco, which is setting up free Wi-Fi internet on the M.G. Road as part of the Golden Mile project, said all the devices would be updated with the latest firmware before providing the free service from Monday.