https://www.bestvpn.com/wpa2-wifi-not-secure/
“Is It Time to Panic?
Yes and no. This is a very serious vulnerability, which affects almost every WiFi user. It makes all our data insecure and could be used by malicious actors to launch wide-scale disruptive attacks on online communities.
On the other hand, there are some silver linings:
- Attacks can be carried out only in close proximity to a WiFi network. The fact that remote attacks are not possible will necessarily limit the amount of damage that a malicious entity can do.
- Connections to HTTPS websites remain secure. This almost certainly means sensitive data such your bank details, online shopping details, and emails are secure.
- Connections protected by a Virtual Private Network (VPN) are secure.
It should also be noted that some devices are affected worse than others:
- Android 6.0 (Marshmallow) and Linux devices are particularly badly affected, as they’re also vulnerable to an additional bug. This results in the encryption key being rewritten to all-zeros, which makes it trivial to hack.
- Windows and iOS devices are the least badly affected because they implement WPA2 in a non-standard way (that, incidentally, violates the 802.11 standard).”
“
How my heart sings 