Gmail, MySpace, and Wi-Fi are all perverse
A speaker at the 2007 Defcon conference made the audience cold when he showed the WiFi network hack in a blink of an eye, then leisurely read all the emails inside the victim's inbox.
Mr. Robert Graham, Managing Director of Errata Security surprised the audience by taking control of Gmail in front of the camera.
After his presentation, he again performed the attack in front of the journalist, even "robbing" a reporter's Gmail account to send the email.
" This attack method works for every open Wi-Fi hotspot (ie, not encrypted), such as the hotspots you often encounter at airports, Starbucks and public access points ," Graham said. said.
He used a "sniff" tool called Ferret to copy unencrypted cookies transmitted over WiFi. Then he "pasted" these cookies into his Web browser with another tool called Hamster.
In addition to this option, an attacker can also use a myriad of other means to steal Website cookies and attack user accounts on MySpace, Facebook, Google .
Therefore, it is recommended that public Wi-Fi hotspots should apply encryption technologies such as Secure Shell (SSH) or Virtual Private Network (VPN) to prevent uninvited guests from coming.
Trong Cam
- How to fix the error of not accessing Gmail
- Google can death Gmail
- Did you know these limits of Gmail?
- 14 years old found errors in Gmail
- How to recover deleted Gmail messages in just 3 steps
- Things to know about Gmail encryption
- How to detect Gmail is subject to tracking software
- Why MySpace has been ... disappointed
- MySpace was attacked violently
- Gmail adds virus scanning
- Vodafone 'shaking hands' Myspace provides services on mobile phones
- Google fixes the vulnerability in Gmail service