I am still amazed by atom's full disclosure...
Thinking that all world experts did have this just right under their eyes for years and that a single enthusiastic man put the finger into this is tremendous... I hope people do realize how amazing it is...
I could sucessfuly get a PMKID on the very last SFR box (french ISP)
Some friend (Xavi and josep345, thanks to them for their feedback) did some testing in Spain and untill now it is...
100% of tested models are vulnerable... (for us)
They tested 4 models used by different ISP and all of them are vulnerable to the new method
Notice for example that the last model in the list is known as "livebox "Mi fibra"" and it is the router that uses orange for all its customers with optic fiber... we are speaking about more than one million of box like this...
For those who have a chipset that is not supported by the hashcat tools, it is very easy to get the PMKID with wpa_supplicant itself
It takes a couple of seconds to get the PMKID
Thinking that all world experts did have this just right under their eyes for years and that a single enthusiastic man put the finger into this is tremendous... I hope people do realize how amazing it is...
I could sucessfuly get a PMKID on the very last SFR box (french ISP)
Some friend (Xavi and josep345, thanks to them for their feedback) did some testing in Spain and untill now it is...
100% of tested models are vulnerable... (for us)
They tested 4 models used by different ISP and all of them are vulnerable to the new method
- NB6VAC-FCX-r0 manufactured by SFR / ISP = SFR (France)
- F680 manufactured by ZTE / ISP = Jaztel + Masmovil (Spain)
- GPT2451-AC manufactured by Mitrastar / ISP = Telefonica (Spain)
- CG6640E or CH6643E (model to be confirmed) manufactured by Compai / ISP = OnO (Spain)
- PRV3399B-B-LT by Arcadyan / ISP = Orange (Spain)
Notice for example that the last model in the list is known as "livebox "Mi fibra"" and it is the router that uses orange for all its customers with optic fiber... we are speaking about more than one million of box like this...
For those who have a chipset that is not supported by the hashcat tools, it is very easy to get the PMKID with wpa_supplicant itself
It takes a couple of seconds to get the PMKID