Lightboard Lessons: Explaining the Kr00k vulnerability

Researchers at ESET discovered a previously unknown vulnerability in Wi-Fi chips and named it "Kr00k". This is similar in some ways (but not similar in other ways) to the KRACK vulnerability that hit WiFi routers a couple of years ago. The Kr00k vulnerability, assigned CVE-2019-15126, allows attackers to steal data that is sent between an end device (phone, laptop, tablet, etc) and a wireless router. It takes advantage of encryption keys that can be forcibly set to all zeroes, thus allowing the attacker to decrypt the information sent to/from your wireless device. This vulnerability is estimated to affect more than 1 Billion devices worldwide. Check out the video to learn more about it!