KRACK, the Wi-Fi security vulnerability, has come as a shock to the technology companies including Microsoft, Apple, and Google. While the other companies are still looking for a security solution, Microsoft has released security updates for its Windows on Tuesday.
Microsoft Security Response Center releases security bulletins monthly on a Tuesday (called Patch Tuesday), and this month they released security updates on 10th October. Microsoft had not disclosed that the new security features also address the KRACK until this vulnerability came in sight on Monday.
The users who had already installed the Patch Tuesday’s security updates, already installed a fix for the KRACK vulnerability, albeit unknowingly.
“In partnership with the International Consortium for Advancement of Cybersecurity on the Internet (ICASI), Microsoft participated in a multi-vendor coordinated disclosure to acknowledge and describe several Wi-Fi Protected Access (WPA) vulnerabilities,” Microsoft said in an update description.
The affected Windows-based systems need to enter a connected standby mode in low-power situations to offload the vulnerabilities installed on Wi-Fi hardware. Microsoft also suggested the customers to contact their Wi-Fi hardware vendors to obtain updated device drivers.
The new security updates from Microsoft are available on all versions, according to catalog listing, including Windows 7, Windows 8.1, Windows 10, Windows Server 2008, Windows Server 2012 and Windows Server 2016.
Microsoft’s new security release consists of security updates for Internet Explorer, Microsoft Edge, Skype for Business, Lync, Chakra Core, Microsoft Office Services and Web Apps.