Latest Social Media News
112.8K views | +4 today
Follow
Latest Social Media News
Social Media
Latest Social Media News
Curated by Gerrit Bes
Your new post is loading...
Your new post is loading...
Rescooped by Gerrit Bes from ICT Security Tools
Scoop.it!

Zscaler Research: BlackSheep - A Tool to Detect Firesheep

Zscaler Research: BlackSheep - A Tool to Detect Firesheep | Latest Social Media News | Scoop.it
From research.zscaler.com - April 13, 2013 6:49 AM

 

You've probably all heard of Firesheep by now, a Firefox add-on which lets anyone hijack a user's session to various popular web applications when they're using an open wireless network. While sniffing/stealing session credentials is nothing new, Firesheep exposes this capability to the masses by automating the process so that absolutely no technical know-how is required.

 

Unfortunately, it is actually quite difficult to defend against Firesheep because most sites only permit SSL connections during the initial login, not while surfing other pages. As such, while your username and password are encrypted, your session ID is available to all other machines on the same network.



In order to install BlackSheep, you need:

Mac OS X: 10.5 or newer on an Intel processor.Windows: XP or newer. Install Winpcap first!Linux:  available hereFirefox: 3.5 or newer. 32-bit only.


Via Gust MEES
more...
Gust MEES's curator insight, April 12, 2013 8:27 AM

 

A MUST install when using Public WiFi!!!

 

Check also:

 

https://gustmeesen.wordpress.com/2012/03/16/beginners-it-security-guide/

 
Sign up to comment
Rescooped by Gerrit Bes from Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
Scoop.it!

One-quarter of websites examined by testing service were malicious

One-quarter of websites examined by testing service were malicious | Latest Social Media News | Scoop.it
From www.infosecurity-magazine.com - August 9, 2012 2:11 AM
One-quarter of the 30,156 websites tested in the second quarter by Zscaler’s Zulu service, which tests the security of websites, were malicious, according to Zscaler’s second quarter 2012 State of the Web report.

 

The State of the Web report found that users are slow to update browser plug-ins and attackers know it, as witnessed by the Flashback Trojan, which infected over 650,000 Macs leveraging a Java vulnerability. However, the situation is improving. In the second quarter, 35% of installed Adobe Shockwave plug-ins were outdated, down from 52% in the fourth quarter of 2011.

 

Adobe Acrobat was the worst in terms of updating, with close to 62% of plug-ins being outdated in the second quarter, followed by Adobe Shockwave with 38%, Microsoft Outlook with 5.7%, and Adobe Flash with 4.3%.

 

===> “Outdated plug-ins are vulnerable to exploitation, and the bad guys know that”, Geide observed. <===

 

Read more:

http://www.infosecurity-magazine.com/view/27471/onequarter-of-websites-examined-by-testing-service-were-malicious/?utm_source=twitterfeed&amp;amp;utm_medium=twitter

 


Via Gust MEES
more...
No comment yet.
Sign up to comment
About Follow us Resources Terms Mobile Features
Facebook
X
LinkedIn