Amaya Toman A flaw in Wi-Fi chips made by Broadcom and Cypress Semiconductor has left billions of smart mobile devices around the world vulnerable to eavesdropping. The aforementioned error was pointed out by experts at the RSA security conference today. The good news is that most manufacturers have already managed to fix the bug with a corresponding security "patch".
It could be interest you
Jaromir Miko The bug primarily affected electronic devices that were equipped with FullMAC WLAN chips from Cyperess Semiconductor and Broadcom. According to experts from Eset, these chips are found in literally billions of different devices, including iPhones, iPads and even Macs. The flaw could, under certain circumstances, allow nearby attackers to "decrypt sensitive data transmitted over the air." The aforementioned vulnerability was given the name KrØØk by experts. “This critical flaw, listed as CVE-2019-15126, causes vulnerable devices to use zero-level encryption to secure some user communications. In the event of a successful attack, the attacker is enabled to decrypt some wireless network packets transmitted by this device," said ESET representatives.
Gallery
An Apple spokesperson said in a statement to the website ArsTechnica, that the company dealt with this vulnerability already last October through updates to the iOS, iPadOS and macOS operating systems. The error affected the following Apple devices:
- iPad mini 2
- iPhone 6, 6S, 8 and XR
- MacBook Air 2018
The potential violation of user privacy in the case of this vulnerability could only occur if the potential attacker was within range of the same Wi-Fi network.
