You’ve already heard of KRACK, a severe flaw in the encryption protocols used by nearly all modern Wi-Fi networks that could let attackers hijack encrypted traffic, steal passwords and even inject malware into Wi-Fi devices.
KRACK, or Key Reinstallation Attack, affects all OS platforms, including most Linux distributions. Fortunately in NoTouch OS we had our own compiled version of the WiFi stack software wpa_supplicant and we were not able to run any successful attacks in our lab. However, we strongly urge our customers to upgrade!
We also strongly urge you to patch your WiFi equipment. Get patches from Cisco and all these vendors. Make sure also your Windows systems are patched. In any case, make sure things are patched properly!
Our developers have reacted fast, updated our code and replaced the basis for our builds with the very latest fully patched version of wpa_supplicant. The latest NoTouch 2.40.2256 and all following builds will include all these patches that were made to mitigate KRACK.
The patched version NoTouch 2.40.2256 is available for our customers in our download portal. Additionally, we strongly recommend that customers update their management virtual appliances constantly, as is described in our Knowledge Base.