Commenting here cuz it's top... just wana say that everyone knows WPS is crap security. you can use Kali Linux with Aircrack-ng and Airodump-ng packages to kick anyone off, browse files off a pc (windows pc without antivirus) of a wifi without logging into the wifi... and ofc you can also hack the pass, it's the easiest part (can use Dummer and Jump Start on windows)
I hope (as the only techy person in my family) that I'm safe. When I told my dad about this he said "It's a scam, they want you to get malware." and when I said "Dad, T-Mobile released an update for our phones." he was like "Are you sure you didn't install a virus." What? It's from T-Mobile. Luckily, he got the update. But knowing T-Mobile it probably didn't have a security patch for this...
Yeah, its made of iron as the electronics makes it soothing as it moves it just right, its also low radiance, making it better for you. Those things are WIFI required.
I appreciate that there's someone out there showing us what's actually happening these big companies don't tell us nothing just send us updates so I do appreciate your work
But if someone breaks into my house he can install malware on my router and listen to my traffic that way, so if someone breaks into your house you are screwed either way
For most devices you can always find third party firmware that includes the patch. Or you could build your own, but it takes time and infinite patience. Then restart your device into flashing mode and flash the new ROM. That might be the only option available to a large amount of the Android userbase.
Guys, I noticed while using Firefox, some websites at first display a green lock, which then changes to an unsecure icon. If you don't double check, these websites can open popups and run scripts without your permission. I'm sure I don't have malware on my pc, since this happens on every device. (PS4, Wii U, Tablet, etc.)
Well, I use the Ethernet. When you use Wi-Fi, you have no idea where it is connected. I disable the wi-fi on the laptop. When wi-fi, do not connect to public wi-fi! 6:16 Long story short: don't use wi-fi.
As "if" you're obligated to use one. You're referring to the fact that you own a luxury item, as justification to walk around data-naked. But remember, wi-fi and g3/4 protocols are completely different things anyway.
That is WHY I don't use wi-fi at home or away. I plug in with a Ethernet cable. So far even though I have had several attacks like you describe I had no damage. I have refused to use a smart phone for years. Some people laughed at me for it but... Wisdom is vindicated by her children.
You don't have to bring in religion in here. I do believe in a god, but there's no need to just talk about him in a comment section that is not about Christianity
No. All old people's computers are just bots because they are so easy to zombie. My grandparents were always getting "telemarketer" calls wanting to "update" their computer. LOL. Fortunately they forgot how to turn the computer on. I say this "hack" is just a design feature that has been "found".
well go to your modem gateway ( probably 192.168.1.1) go to wireless settings. there need to be something like "access control", "whitelist" etc. get your devices mac addresses and copy paste them there.
Hi ThioJoe For the hacker or "man in the middle" to send "message 3" they would have to have the same MAC address as the access point. WiFi is just Ethernet so you can't have the same MAC address on the same Ethernet network . So the "man in the middle" has to figure out what the MAC address of the access point , and then send the MAC address of the access point using a different radio channel. This way it doesn't break the crypto and there no inter- MAC collision. Also this "main in the middle" has to be in radio range of the access point. quick enough to intercept the security key, which then it impersonate the access point to the client , and the client to the access point. This way the client has no idea that it talking to the "man in the middle", instead to the actual access point. So basically the issue is on the client side of things. Yes it good idea to update your modems etc, but it the clients i.e. computers , tablets, phones any device that connect to an access point that the issue.
mac addresses are send out by wifi as public beacon, they are visible by anyone who want to see it, also changing madaddress of your wifi or ethernet card is pretty easy.
I'm currently going through a problem with ROBLOX and I THINK its to do with the KRACK attack... even my internet security thing is going on about it, but my parents tell me to not bother with it like AT ALL... they tried helping me but then they began arguing that 'the KRACK attack is not real, don't worry son' and stuff like that.. but I'm still concerned about it...
*ME:* Hacks into internet. *HOTEL OWNER:* WTF HOW THOUGH I HAD PROTO *ME:* They never expect the Spanish Inquisition. *HOTEL OWNER:* Omae Wa Mou Shindeiru *ME:* NANI!!!!! Get *TRIPLE* memed ( ͡° ͜ʖ ͡°)
Heres a solution: Login to yr Router Configuration setup menu Go to yr "Wireless" settings Disable SSID Broadcast: Now yr neighbors cant see the name of yr internet when they scan for nearby connections. You're welcome
The hack is only useful if the website you're visiting is not encrypted. Make sure you visit secured websites. For anyone really concerned about their security, there is HTTPS everywhere which overrides the page's security setting to force it to be encrypted. Wi-Fi has always been breachable, so this is no surprise.
What I'm concerned about this exploit is Android devices not being supported by Google. Devices I'm referring to are the Nexus 9 and Nexus 7 (2013). I'm using these tablets and know that Google has stopped sending security updates. How am I supposed to patch these devices. To make matters worse, I own a rooted Samsung Galaxy Note 3 running a Lollipop ROM. I know Samsung has stopped supporting this device. What am I supposed to do to secure that?
At the beginning of the explanation I was thinking of the enigma machine. And it came up later. Then I was thinking about Benedict Cumberbatch. And then Sherlock. And then I forgot what ThioJoe was talking about.
See's this.... Opens Windows Update.
*EDIT:* Installing New Update...
It was patched a while ago
HonzaScreamsInTheMic have not updated for 5 months
Commenting here cuz it's top... just wana say that everyone knows WPS is crap security. you can use Kali Linux with Aircrack-ng and Airodump-ng packages to kick anyone off, browse files off a pc (windows pc without antivirus) of a wifi without logging into the wifi... and ofc you can also hack the pass, it's the easiest part (can use Dummer and Jump Start on windows)
i cant even update my windows. it is stuck and windows 10 2015!!! it wont update
what about malwarebytes? i don't run any ati-viruses.. because i don't run any virus infected windows. (And my wifi is turned off, running Ethernet)
you're all screwed
ThioJoe yep
I use WPA1
ThioJoe thank u for warning
Hey
Nope. Don't have WIFI. Wired FTW
nuuuuuu not my internet fridge
why a refrigerator need twitter
@@ThioJoe for many thing.
@@ThioJoe So he can have birds go to the eggs inside...
AND THEN FREEZE THEM. LOL GIT REKT BIRBS.
*Laughs over ethernet*
Bro I'm using LiFi get on my level
@@tacoengineer6660 stop lying
Ethernet is still the same deal, you really didn't thought this out, haven't you?
@@vuraniute9571 K then, but I use XLfi.
and btw literals, its a joke idiot, ever heard of one?
@@tacoengineer6660 what the hell is that
I hope (as the only techy person in my family) that I'm safe. When I told my dad about this he said "It's a scam, they want you to get malware." and when I said "Dad, T-Mobile released an update for our phones." he was like "Are you sure you didn't install a virus." What? It's from T-Mobile. Luckily, he got the update. But knowing T-Mobile it probably didn't have a security patch for this...
NOOOOOO MY WIRELESS PILLOW!!!!!!
Really?
Yeah, its made of iron as the electronics makes it soothing as it moves it just right, its also low radiance, making it better for you. Those things are WIFI required.
I appreciate that there's someone out there showing us what's actually happening these big companies don't tell us nothing just send us updates so I do appreciate your work
It's weird how come this video has less than 4K likes. Anyway, great content and interesting topic as always TJ, keep it up man!
WOW. this is really informative :)
I love that you put details in the description, most RUclipsrs don't do that
*[Heavy Breathing]*
*[Lots of "lol"ing]*
*[beating meat to animals]*
Vyktar's Stash heavy breathing, the famous scam
*[Trying 0x00000000 and then realized that I messed up my whole stinking computer]*
the pleasure of having a gaming pc with absolutely no WiFi. Like a boss. Always.
Where can I uninstall WiFi?
Turn it off
Get a wired router (no wi fi)
that's why i'm still wired on every non-portable device even in 2017.... Wi-Fi isn't and will never be as secure as wired ethernet
Don't be so sure, someone might break into your house and listen to your cables 🤔
oh no... he's right
But if someone breaks into my house he can install malware on my router and listen to my traffic that way, so if someone breaks into your house you are screwed either way
RealTuber i don't think that ethernet is secure either, if it's connected to the router then I believe ur affected
+ThioJoe
jokes on you
my Ethernet doesn't speak
shit my roblox account is gunna get hacked
worst case scenario
The real John doe?
shitttt my runescapee
true
Johnjohncar lol
This seriously deserves more views.
When you say Android 6.0+ do you mean Android Marshmallow, Android Nougat and Android Oreo or just Android 6 and all of its smaller updates
All
Android 6.0 and *Later*
Android 6+ is affected. Including the latest release (Oreo).
Killer Keemstar Still insecure af
For most devices you can always find third party firmware that includes the patch. Or you could build your own, but it takes time and infinite patience. Then restart your device into flashing mode and flash the new ROM. That might be the only option available to a large amount of the Android userbase.
Its been a long time since I have seen a great video like this. Thank you.
Well time to burn all my electronic devices and move to the desert
Hello
Thanks for the Heads Up Thio. All our devices are Android from AT&T. Hope they are aware of this.
I don't use WIFI outside my home, so that's good.
honda2363 me either, and at home I use a VPN. But I get patches every month so I should be ok.
what about in your home?
honda2363 only lte out of home :)
Dude you guys aren't understanding this happens to home wifi including your ethernet lpl
Do you live in a Faraday cage?
**goes onto mobile service provider, finds number of tech support
Me: Hello, umm I'd like to upgrade my data plan.
Is it valid in India?
MCOD1999 Nah, you're safe.
It's done by aliens so only USA is affected 😎
Well this wont work on mars ..
Mrudul Gaikwad whooosh
Mrudul Gaikwad He was joking. "valid in India" is a meme
Guys, I noticed while using Firefox, some websites at first display a green lock, which then changes to an unsecure icon. If you don't double check, these websites can open popups and run scripts without your permission. I'm sure I don't have malware on my pc, since this happens on every device. (PS4, Wii U, Tablet, etc.)
Uses mobile data*
Oliver Gamerz same lul I have 15gb for a month + they accumulate so now I have 30gb (I changed operator, I am italian so it was TIM now I am 3)
XD
News:WPA3 announcement
Me:YAY!
News:Valve pitches in
Me:...
I'm so happy I try to install every single windows 10 update there is.
**goes onto mobile service provider, looks at number
Me: Ahh, hello I'd like to upgrade my data plan
Oh that update last night on windows 10 was just a patch
Inkling Jr. how long does it take?
Finally, a video that's not a boring top ten list or a useless smartphone review. :P
Hey, actually windows silently made a patch for this on October 10th for all supported windows platforms (7-10)
Sir. Frolo so that was the update last Thursday or whenever? Or is there a new one?
Ugh time to finally turn on my pc? I mean I still have to install updates lol
ThioJoe Thank you for the news. Liked.
I won't get any patch for like 3 months because Samsung dosen't like to push updates on older phones...
xX_SpeedyScout_Xx they already did. It was super fast, cus they know they dun fucked up.
Well, I use the Ethernet. When you use Wi-Fi, you have no idea where it is connected.
I disable the wi-fi on the laptop. When wi-fi, do not connect to public wi-fi! 6:16
Long story short: don't use wi-fi.
Time to work on kali linux :)
Scorpion and why is that?
So true bruh lol
Zach Waksmonski Capturing the handshake is an easy step, i have to look up for the rest
SomeRandomDude YT I use parrot typically tho ( ͡° ͜ʖ ͡°)
Zach Waksmonski cool
ThioJoe great like usual.
Did you know Nokia 3360
It's the unhackable phone and perfect phone
Great explanation my man :D
You guys were told not to use wifi many many times.
Burfurd64 wtf are you talking about?
This was _eventual_ according to the Experts™. Gotta stay hardwired.
As "if" you're obligated to use one. You're referring to the fact that you own a luxury item, as justification to walk around data-naked. But remember, wi-fi and g3/4 protocols are completely different things anyway.
Smartphones are luxury items in 2017? What are you on, man?
Of course they are. Millions of people, even here in the states, get by just fine without them _every day._
Me:I hope this is outdated...
I use an Ethernet cable for my PC, am i vulnerable?
(Hope i spelled it right)
Yonatan Avhar Ethernet is safe. No one can hack Ethernet as it not over the air.
Yonatan Avhar yes people can hack into ethernet it's very easy to hack into ethernet so noone is safe LoL
David Tee your wrong buddy
People can't intercept your connection without physical access to your Ethernet cable.
Rithvik Venkata
Krack is a real issue right now.
That is WHY I don't use wi-fi at home or away. I plug in with a Ethernet cable. So far even though I have had several attacks like you describe I had no damage. I have refused to use a smart phone for years. Some people laughed at me for it but... Wisdom is vindicated by her children.
Welp I'm fucked because i use s8 with android 7.0.0
Gechi22 pay for a VPN until you get a patch
PlusLucas ok thanks
Mannnnnnn you twippen
Gechi22 I believe Samsung will take this serious enough to patch it as soon as they can!
PlusLucas I hope so
Thiojo, quick question: Does the atracker need to be within range of your network? I never use public WiFi, but I am concerned about my home network.
Or just use wired lol
Like if you love jesus
Ryder Holland God and Jesus isn't real. Lol
You don't have to bring in religion in here. I do believe in a god, but there's no need to just talk about him in a comment section that is not about Christianity
unrelated
or its a like farm
It was actually a Belgian researcher that found this out!
Im lucky evryone who lives near me is like 60yrs
or, you could be DOUBLE fucked because if you do get hacked how will you know who did it?? 🤔
80 year old grandma sitting at computer spying at what the children next door are doing.
No. All old people's computers are just bots because they are so easy to zombie. My grandparents were always getting "telemarketer" calls wanting to "update" their computer. LOL. Fortunately they forgot how to turn the computer on. I say this "hack" is just a design feature that has been "found".
well go to your modem gateway ( probably 192.168.1.1) go to wireless settings. there need to be something like "access control", "whitelist" etc. get your devices mac addresses and copy paste them there.
Well this is a great birthday present.
Both this video and the game Data Wing told me a lesson...
DONT ENTER 0x00000000, ITS REALLY RISKY.
QUICK PATCH: BAN ON ALL DEVICES THE 0-KEY WHY ISNT THAT SO EASY?
Someone you would have to ban zero from the internet, because someone will just download the number zero and copy paste it.
because open Wi-Fi spots exist
Finally *THE PATCH* for Cisco's Router Products
I uses them as WPA2 so I could use that patch for my router because it's at 75% risk right now
18th viewer :D
Also, we are all fucked...
Hi ThioJoe For the hacker or "man in the middle" to send "message 3" they would have to have the same MAC address as the access point. WiFi is just Ethernet so you can't have the same MAC address on the same Ethernet network . So the "man in the middle" has to figure out what the MAC address of the access point , and then send the MAC address of the access point using a different radio channel. This way it doesn't break the crypto and there no inter- MAC collision. Also this "main in the middle" has to be in radio range of the access point. quick enough to intercept the security key, which then it impersonate the access point to the client , and the client to the access point. This way the client has no idea that it talking to the "man in the middle", instead to the actual access point. So basically the issue is on the client side of things. Yes it good idea to update your modems etc, but it the clients i.e. computers , tablets, phones any device that connect to an access point that the issue.
mac addresses are send out by wifi as public beacon, they are visible by anyone who want to see it, also changing madaddress of your wifi or ethernet card is pretty easy.
Does work this in Korea?
FreakinYAY everywhere
Nothing will be working there soon lol
Damn you always release these when I'm in class.
Haters gonna hate
Ha my phone is still android 4.4 xD
ThatLoneyHypedXes Get a new phone
Jack_Cydia he could have a newer phone running an only version of android
Juan Lopez *newer
You're still affected. He is just saying it's worse on Android versions newer then 6.0
the bad thing is, that there are phones which are just not gonna get updates anymore. And I don't have 200$ to spend on a piece of shit phone
This explains that update for WPA I just installed on my Linux computer.
Is WPA2-PSK also affected?
Scorpion thiojoe no longer jokes
If you are on iOS, 11.1, on the last beta should have fixed it, install the beta profile
does dis affect mobile data
does mobile data use WI-FI ?
*( ͡° ͜ʖ ͡°)*
wifi dude, wifi...
Great video and explanation, thanks!!
So LTE is safe..?
Jonathan Houle it's a different system, if I'm correct
Yea it is
Thank you for telling us ThioJoe
Big fan not subscribed yet
Atharva Garole well he used to be the guy who faked ALOT of things, but like a year ago he changed from fake stuff to doing real stuff
Great Explanation!
😱😱😱😱😱
Jumpscare.exe has stopped working
Very good to know. Thanks for explaining that!!
Now we can say to all the linux users that linux is shit and that they should switch to windows asap 😏
Nola1222 Linux has a patch already
Nola1222 they all suck
Ur like the smartest person on the planet! U should run for president.
Love ur videos. Very well spoken!
Wow nycccc...
Joke's on you! My phone's flat!
1st
Nope, second.
actually he is first.
gio nika Actually he WAS second until the first guy removed his comment. So now he is first!
Yessss!!! So now I an first thenn
Thank you so much man
This was amazing
Thank you again
You should make daily tech news!!!
So you are saying it is like banknote money because it have a different number code each note to prevent people from fronting the same bank notes
Remember when we updated win95's winsock to winsock2 to prevent being Nuked on mIRC? ;-D
a) Don't live near hobbyist nerds
b) Do you think this is real or is the router industry seeing a sales drop?
how does this increase sales?
Jokes on you, I use my unlimited data exclusively.
I'm currently going through a problem with ROBLOX and I THINK its to do with the KRACK attack... even my internet security thing is going on about it, but my parents tell me to not bother with it like AT ALL... they tried helping me but then they began arguing that 'the KRACK attack is not real, don't worry son' and stuff like that.. but I'm still concerned about it...
GodzillaTPP [TMIZ/GMLPA] you've got a virus. You wernt hacked
The more tech develops, the more at risk we go!
Privacy will pass out and then R.I.P
*ME:* Hacks into internet.
*HOTEL OWNER:* WTF HOW THOUGH I HAD PROTO
*ME:* They never expect the Spanish Inquisition.
*HOTEL OWNER:* Omae Wa Mou Shindeiru
*ME:* NANI!!!!!
Get *TRIPLE* memed ( ͡° ͜ʖ ͡°)
Hell yeah i love wifi vulnerabilities
A code that effects all platforms? Huh, thought i'd never see the day.
Pee-wee: "This is Krack."
Heres a solution:
Login to yr Router Configuration setup menu
Go to yr "Wireless" settings
Disable SSID Broadcast:
Now yr neighbors cant see the name of yr internet when they scan for nearby connections.
You're welcome
KZ1994able
Yea no. It’s incredibly easy to find hidden networks
Don't forget to also update your refrigerator, your toaster, your microwave, your thermostat, your lightbulbs...
I love your videos! But is it possible to make it a little shorter?
The hack is only useful if the website you're visiting is not encrypted. Make sure you visit secured websites. For anyone really concerned about their security, there is HTTPS everywhere which overrides the page's security setting to force it to be encrypted.
Wi-Fi has always been breachable, so this is no surprise.
laughs realizing this is patched
Do RUclips Creators know that Push Notifications don’t work on iPhone? 😂 I’ve never once got my Push Notifications, they’re all one.
One of the best ways to protect yourself is to ensure that HTTPS is enabled in browser.
I think it's time to re-invent the WPA Wheel......Oh what a PAIN that will be.....
Great Info! Thanks!!!
To anybody using LineageOS on android any update after the 16th will contain the patch.
Most linux distros got a patch a day or two after this was first announced to the public.
What I'm concerned about this exploit is Android devices not being supported by Google. Devices I'm referring to are the Nexus 9 and Nexus 7 (2013). I'm using these tablets and know that Google has stopped sending security updates. How am I supposed to patch these devices.
To make matters worse, I own a rooted Samsung Galaxy Note 3 running a Lollipop ROM. I know Samsung has stopped supporting this device. What am I supposed to do to secure that?
At the beginning of the explanation I was thinking of the enigma machine. And it came up later. Then I was thinking about Benedict Cumberbatch. And then Sherlock. And then I forgot what ThioJoe was talking about.
I feel like im taking my Network & Operating course all over again with this video just without the Programming lmao
I remember this. I think they even pushed an update for Windows XP because of this.