KRACK Attacks: Breaking WPA2 Yesterday this researcher released a paper demonstrating a vulnerability in WPA2. While WPA2 is the most used and most secure method of wifi security, it has been proved to be vulnerable in the past by password guessing and man-in-the-middle attacks. On my Linux laptop I found my own WPA2 password in about 3 minutes by forcing others on my LAN to disconnect and then automatically reconnect to my fake access point and capturing the WPA password in clear text.; it's a very strong password too! This new vulnerability affects ALL WPA2 secured wifi devices and networks because the attack exploits a vulnerability in the WPA2 protocol itself. Fortunately, the researchers will not release the scripts (commands) they used until WPA2 gets patched. Thus, there will likely operating system updates soon enough to update wifi networking. The page above explains how the exploit works in fairly easy to understand language.