Microsoft Advisory Warns of Wi-Fi Authentication Vulnerability in Windows Phone Platform
"Microsoft is aware of a public report that describes a known weakness in the Wi-Fi authentication protocol known as PEAP-MS-CHAPv2 (Protected Extensible Authentication Protocol with Microsoft Challenge Handshake Authentication Protocol version 2), used by Windows Phones for WPA2 wireless authentication. In vulnerable scenarios, an attacker who successfully exploited this issue could achieve information disclosure against the targeted device," Microsoft explained in a security advisory.
The good news? Microsoft isn't aware of any active attacks exploiting this specific vulnerability, though that's not to say it won't ever happen. To play it safe, Microsoft's advisory lists a handful of suggested actions to secure your Windows Phone device from this exploit.