Cyber researchers have discovered a Wi-Fi security flaw that leaves countless devices at risk and users vulnerable to hackers who can steal personal information stored on their computers, Politico reports.
The flaw, known as KRACK (Key Reinstallation Attack) happens when a new user joins a Wi-Fi network and can impact any kind of device with Wi-Fi that uses WPA or WPA2 encryption. Many routers and Wi-Fi devices follow the protocol. The vulnerabilities allow attackers to read Wi-Fi traffic between wireless access points and devices.
"In general, any data or information that the victim transmits can be decrypted," researchers wrote. "The attack works against all modern protected Wi-Fi networks."
Android and Linux devices are vulnerable to the flaw, but Windows users and users who have the latest versions of Apple's macOS and iOS are mainly immune to it. Websites that use HTTPS and connections through virtual private networks are also safe.
Microsoft says it has already fixed the vulnerability, per a report in the Verge, stating it has "released a security update to address this issue." Google has promised a fix in the coming weeks.