[2] An attacker would be able to manually retrieve and
decrypt another user's
data on a WPA - PSK connection, if the key is known and the attacker was present at the time of the handshake, or if they send a spoofed de-authenticate
packet to the router, causing the user to re-authenticate and allow the attacker to capture the handshake.