A flaw has been found in WPA2, which is the protocol that secures modern protected WI-FI networks. Attackers can read data sent that was previously encrypted. There is *SOME* good news though, if your HTTPS session is configured correctly, that data sent between your browser and the server is still encrypted. (If the server wasn’t configured well, separate attacks against HTTPS can be deployed.)
WPA2 can be patched, and the patch should be backwards compatible. If there’s a patch for your router, patch it ASAP! If there isn’t one yet, it’s time to start bothering the support department of your wireless router manufacturer. Failing that, back to hardwired?
And for my geek friends, here’s the official announcement:
UPDATE: Microsoft released a patch on Oct 10th. Windows users should make sure you have this:
Apple Users: 11.03 for phones is out but there are no new security fixes in it.