PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

KRACK Wi-Fi Bug: What Apple, Google, More Are Doing to Fix It

Vendors including Apple, Google, Intel and Microsoft have already issued patches or are preparing to roll them out to the public.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

The new vulnerability found in Wi-Fi networks may sound scary, but vendors are starting to roll out patches to address the danger.

Microsoft, for instance, released a patch for Windows on Oct. 10. "Customers who have Windows Update enabled and applied the security updates are protected automatically," the company said in an email.

Apple has already issued a fix in the latest beta versions of its iOS, macOS, tvOS, and watchOS platforms. But it'll also release another security patch targeting the rest of its user base "soon," the company said, without specifiying a date.

Google also appears to be preparing a security patch for Android devices, but it won't come out until Nov. 6 when the company releases its monthly security update.

A broad notification about the vulnerability was sent to industry vendors in late August, so major tech companies should be aware of the problem.

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts

On Monday, Intel posted updates for the company's wireless internet adapters, which can be downloaded and installed. The chipmaker is also working with device manufacturers to roll out the patches to computers.

Others, like Ubuntu have also issued patches. Cisco and Amazon are also in the midst of preparing security fixes for their wireless products.

The vulnerability, disclosed on Monday, is particularly troublesome because it affects all modern Wi-Fi networks. It stems from the Wi-Fi Protected Access II (WPA2) protocol, which is designed to keep the network secure. Security researchers in Belgium noticed a weakness in the protocol that can be abused to spy on the data transmitted over the Wi-Fi network.

As a result, any sensitive data like user passwords, credit card numbers, and emails could be stolen if a hacker were to exploit the vulnerability. To fix the problem, vendors across the entire industry will have to issue patches.

The good news it that the flaw only works if the attacker is within physical range of the Wi-Fi network. The researchers also found that Windows 7, Windows 10, and iOS 10.3.1 used a different wireless implementation, making the operating systems less suspectible to the vulnerability.

The flaw can also be patched in a "backwards-compatible manner," according to one of the researchers, Mathy Vanhoef. That means when users patch their smartphone or PC, the device should now securely communicate over Wi-Fi, even if the internet router they're using hasn't been patched.

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio