So if you ‘borrow’ your neighbors wifi or access insecure wifi in public, man you could lose your FaceBook and many more important logins!
The add-on that goes in the left sidebar of the Firefox web browser allows the user to get login-data capture Facebook accounts, Twitter accounts, and any site that is not logged is secured with SSL (https). When you log into your Facebook account, a cookie is sent back to your computer to use for future logins. Someone using F! ire Sheep for Firefox can simply click a button that says “start recording” and steal your login information. All they have to do is click on your Facebook picture and they will be notified as you.
This works the same for a website that login page does not use end-to-end encryption. For example, if you log into Gmail, you’ll see the URL “https: / /” in front of it. This means that Gmail is safe, and your login information can not be stolen by Fire Sheep. But for sites like Facebook, Twitter, Flickr, etc. (sites that only “http” (without the “s” at the end), when logging in, your login information can be easily affected by someone Fire Sheep. Other websites using the secure https protocol banking sites, credit card companies, the most popular email hosts and government websites.
The reason Toorcon decided to release 12 of these potentially dangerous software companies like Facebook is aware of the problems that arise when they do not use SSL. Hopefully these companies realize the potential dangers that their users are exposed to, and this problem.
This method is nothing new infact any one with abit of tech experienced could steal your cookies if you use unprotected wifi to access internet.
0 comments:
Post a Comment