Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Windows phone wi-fi vulnerability may lead to encrypted domain credential theft…

August 17th 2013 in Uncategorized

Microsoft is aware of a public report that describes a known weakness in the Wi-Fi authentication protocol known as PEAP-MS-CHAPv2 (Protected Extensible Authentication Protocol with Microsoft Challenge Handshake Authentication Protocol version 2), used by Windows Phones for WPA2 wireless authentication. In vulnerable scenarios, an attacker who successfully exploited this issue could achieve information disclosure against the targeted device. Microsoft is not currently aware of active attacks or of customer impact at this time. Microsoft is actively monitoring this situation to keep customers informed and to provide customer guidance as necessary.

To exploit this issue, an attacker controlled system could pose as a known Wi-Fi access point, causing the targeted device to automatically attempt to authenticate with the access point, and in turn allowing the attacker to intercept the victim’s encrypted domain credentials. An attacker could then exploit cryptographic weaknesses in the PEAP-MS-CHAPv2 protocol to obtain the victim’s domain credentials. Those credentials could then be re-used to authenticate the attacker to network resources, and the attacker could take any action that the user could take on that network resource.

Recommendation. Apply the suggested action to require a certificate verifying a wireless access point before starting an authentication process.”

Cite: http://technet.microsoft.com/en-us/security/advisory/2876146

Comments are closed.

Cite: http://blog.trendmicro.com/trendlabs-security-intelligence/header-spoofing-hides-malware-communication  

Previous Entry

This is sad:http://www.infosecblog.org/2013/08/closed/
I can understand how work policies and vendor sensitivities can make blogging awkward, if not impossible at times.  I’ve faced the same challenge often enough myself. We are always having to balance getting information out there that is useful with trying not to embarrass the victims or clue the bad guys in to […]

Next Entry