WPS technology that was originally used to simplify setting up Wi-Fi router for absolute beginners, suffers from a huge shortage in the actual design. The vast majority of wireless user can set a strong password, but that is useless just because this technology. An attacker with the appropriate amenities (WiFi card that supports packet injection) finds using tool called 'wash' appropriate network in the area and then you just turn the Linux tool called Reaver-wps from Craiga Heffner, which is downloable for free here: code.google.com. The actual obtaining a key to the network takes approximately 4 to 10 hours depending mainly on the signal.
The biggest danger is in wifi routers models which can't off WPS service! However, if in your case possible, these improvements as soon as possible to turn off!
- Technical specifications and details of the attack are freely available in PDF (EN) here.
- A video that demonstrates the attack on WPS-enabled network can be viewed here vimeo.com.