WPS is vulnerable on several major router brands.
It comes enabled by default from many vendors from the factory.
It can be brute forced and allow an attacker to obtain the keys.
When it gets cracked in just a few hours to a few days it will reveal the PIN code, wpa wpa2 keys.
It is recommended you disable WPS and secure your WiFi Router.
You read the heading right, crack WPS in 1 second.
While the WPS (Wi-Fi Protected Setup) is one of the more popular network security standards that lets its users secure a wireless home network, it is totally aware that it can be threatened through a brute-force attack if its network access point is poorly configured.
How this brute-force attack works is by making use of the typically weak randomization that occurs during the key generation which is used to verify hardware PINs on some WPS.
An attacker using brute-force would just collect the information very quickly and this allows them to basically guess the PIN through offline calculations.
The reason why this offline calculation is so crucial is because it allows the attacker to remain hidden – offline – since he doesn’t actually need to physically try every possible combination of digits to the numerical password.
This idea was presented by researcher Dominique Bongard who said while explaining this: “It takes one second. It’s nothing.
Bang! Done!” Bongard is an embedded systems security specialist, reverse engineer, and mobile application developer, and CEO and Founder of 0xcite Sàrl.
He recently demonstrated this type of attack at the PasswordCons Las Vegas 2014 conference.
If we were to compare Bongard’s method to a different method, a highly efficient attack on a WPS.
Would normally require up to 11,000 guesses and this number would be considered not a very large number of attempts and could take up to four hours in the process.
Bongard’s new attack simply takes a series of offline calculations and just one single guess.
This major security issue mainly affects two manufacturers of chipset.
The first is Broadcom and the second name remains undisclosed by Bongard until the manufacturer fixes this security flaw.
It seems Broadcom had poor randomization while the other vendor just didn’t have enough randomness in their process.
It remains now to be seen what the next major move in the chipset industry will be to alleviate the dangers of a brute-force attack.
Professional WiFi Software Portable Penetrator recover WPS pin code. WiFi Protected Setup is vulnerable to a remote validation flaw when carry out brute force vulnerability attack.
If the router is vulnerable and WPS is enabled then it can be exploited by remote attackers to recover the WPS pin , WPS or WPA2 keys.
WPS WiFi Protected Setup has been found vulnerable to remote offline and online attacks that can allows attackers to gain full control of the router.
The WPS Encryption that is enabled by default in multiple popular router brands have been found vulnerable.
Due to a vulnerability in the authentication method remote black hat hackers found a weakness in then PIN code form.
Since it requires only half of the required keys for authentication it ca be accomplished with only up to 20.000 connection attempts.
When attackers obtain the PIN Code of an access WiFi point they can be able to connect and in some cases even reveal the WPA or WPA2 no matter the strength and sophistication of the WPA or WPA2 Password.
Disable WPS to increase WiFi Security Level router
If you are running one of the popular router WiFi brands such as Dlink, TPlink, Zyxel, Linksys etc.
It is recommended to access the Router WiFi Web Interface.
In the Web Interface click on advanced WiFi and see if WPS is enabled by default.
You can also upgrade to the latest firmware that will provide more security and block WPS cracking attempts.
It is recommended to audit your own WiFi access points as well.
You can carry out Professional WiFi Pen testing with Portable Penetrator WiFi Software.
Run it from your Windows 8.1, Windows 10 or Mac OS X laptop.
In order to perform the best auditing a strong and powerful WiFi adapter is recommended to use for injection and monitoring.