Leave a comment

Comments 8

taranhero October 27 2010, 19:32:45 UTC
That's... impressive. I guess that's (hopefully) a good way to scare people running these sites into implementing better security ASAP.

Reply

kelkyag October 27 2010, 20:25:43 UTC
But in the meantime, at least a lot of mischief and possibly a lot of harm will be done. :( And perhaps places that provide free wifi will institute use agreements. Or stop providing it.

Reply


That was disappointing... jdbakermn October 27 2010, 21:53:13 UTC
...I was hoping to find a new way of stealing chocolate chip cookies.

Reply

Re: That was disappointing... jdbakermn October 27 2010, 21:58:26 UTC
But, um, wow. That's a lot of mischief going to be happening for the next few weeks.

Reply

Re: That was disappointing... kelkyag October 28 2010, 04:32:47 UTC
And here I thought you preferred oatmeal! I do owe you cookies ...

Reply


merastra October 28 2010, 00:12:10 UTC
Makes me glad I'm avoiding Twitter & Facebook. Though I'm with jdbakerm in that I was half-hoping for chocolate chip cookies. :-)

Reply

kelkyag October 28 2010, 04:32:18 UTC
It's not just twitter and facebook -- it could work on ~anything that uses cookies to hold log-in credentials and doesn't encrypt connections, given the right plug-in, and they're apparently easy to create. There's no reason one couldn't be created for Livejournal. It comes set up to grab credentials for Amazon.com, Basecamp, bit.ly, Cisco, CNET, Dropbox, Enom, Evernote, Facebook, Flickr, Github, Google, HackerNews, Harvest, Windows Live, NY Times, Pivotal Tracker, Slicehost, tumblr, Twitter, WordPress, Yahoo, and Yelp, according to the article.

Reply

merastra October 28 2010, 05:02:58 UTC
Eek, ok. Maybe I should, like, you know, read the article. ;-)

Reply


Leave a comment

Up