Once again WiFi security is in the news, this time a new report in the UK shows that almost half of UK home WiFi networks could be compromised within 5 seconds. While that sounds a little dramatic it wouldn’t surprise me if a lot still have no WEP key at all. And even if they […]
Privacy
Facebook Introduces OTP (One-time Password) Functionality
Nice to see an innovation on the security front for once rather than endless ‘feature’ updates and announcements of ‘the next big thing’. Facebook has had its fair share of security woes so it’s nice to see they are doing something which I think may be genuinely useful for it’s burgeoning user base. A lot […]
Interpol Chief Ronald K. Noble Has Facebook Identity Stolen
Just goes to show you can jack anyone, including one of those most powerful people in the policing world. It’s not really a technical security issue but still it shows online identity theft isn’t really difficult. That’s one difference between Twitter and Facebook, even though Twitter is only a micro-blogging service and doesn’t really store […]
sessionthief – HTTP Session Cloning & Cookie Stealing Tool
sessionthief performs HTTP session cloning by cookie stealing. It can issue basic nmap and nbtscan commands to see which IPs are on the subnet, or just listen for IPs broadcasting packets. It can quickly perform ARP poison routing to get packets given the IP of the client if not on an open network or hub, […]
Google Agrees To Pay $ 8.5 Million To Settle Buzz Class Action Lawsuit
And once again Google is in the news regarding privacy issues, this time it’s regarded their social networking service Buzz (which by all accounts is pretty much a flop). The way in which the service used Gmail users address books alarmed a lot of people and the default settings were rather risky and revealed a […]