Results 1 to 2 of 2

Thread: Side Jacking– Now Secure is not secure

  1. #1
    Senior Member Array
    Join Date
    Nov 2006
    Age
    32
    Posts
    5,877
    Country: India
    Rep Power
    0

    Side Jacking– Now Secure is not secure

    A security researcher at the Defcon hacker conference in Las Vegas demonstrated a tool that allows attackers to break into your Inbox even if you are accessing your Gmail over an encrypted session.

    If you use Gmail and haven’t yet taken advantage of a feature Google recently provided to prevent hackers from hijacking your inbox, now would be an excellent time to do that (click here, and read Tip #1).

    A security researcher at the Defcon hacker conference in Las Vegas demonstrated a tool that allows attackers to break into your Inbox even if you are accessing your Gmail over an encrypted session (i.e. using https://.. which you might recognize as the “gold lock” icon).

    Here is a video demonstration of how an attacker would use an automated tool to hijack your login. The music may strike you as offensive, and there’s no narrative, so feel free to mute the sound.
    (Well.. once again WordPress is preventing me from embedding the video. To watch it, please click here, Surf Jacking Gmail demonstration.)

    While it may seem like Gmail is being singled out here, you should realize that other websites are vulnerable to side-jacking and cookie stealing too.. notably Facebook (I mention it because it has so many users), but Gmail is one of the few sites that allow you to thwart this attack method.

    So how do you prevent side-jacking? Here are some simple, but inconvenient, solutions you can use to protect your data.

    * If possible, avoid using public or open wireless networks.
    * If you need to use a public wireless network, do not access Web sites that require personal information.
    * Always use the “logout” feature when finished with a Website that requires a login ID/password.
    * For Gmail, click the link in my first paragraph and set the “Always use” option.
    * When you need to provide sensitive data in forms, such as if you are doing online banking, open a new instance of your browser and complete your transaction; logout, and close that Browser. Do not open any other websites in that browser.

    Folks, the Internet is broken.. and it is the hunting ground for criminals. Please.. let’s be careful out there (and by careful, I mean “paranoid”).


     



  2. #2
    Member Array
    Join Date
    Jul 2009
    Location
    Bhubaneswar, India, India
    Posts
    1,457
    Rep Power
    0
    nice way.....

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)







Similar Threads

  1. How to: Secure Your WLAN
    By orion in forum Computers and Laptops
    Replies: 0
    Last Post: 05-07-2011, 03:12 PM
  2. Make your Wireless Network Secure
    By carbon copy in forum Computers and Laptops
    Replies: 3
    Last Post: 12-01-2010, 03:38 PM
  3. Replies: 0
    Last Post: 04-01-2008, 03:21 PM
  4. F-Secure Internet Security 2007
    By darani in forum Talk Shaak
    Replies: 0
    Last Post: 03-14-2007, 06:55 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  



Get Daily Forum Updates

Get Most Amazing E-mails Daily
Full of amazing emails daily in your inbox
»» Join Nidokidos E-mail Magazine
Join Nidokidos Official Page on Facebook


Like us on Facebook | Get Website Updates | Get our E-Magazine