Posts Tagged ‘hacker’

What is Firesheep? What you need to know to keep yourself safe

Friday, December 3rd, 2010

In the recent weeks Wi-Fi users have encountered yet another threat that has them concerned about their Internet security. Session hijacker Firesheep is the latest security threat that has Internet users wondering how to defend themselves while on the web. 

What is Firesheep? 

Firesheep is an extension for the web browser Firefox that lets people sharing your Wi-Fi network sniff out your login information to a number of sites, including most social networking sites, and log in as you. They can then make alterations to those accounts and perhaps discover sensitive data. 

Firesheep was originally released as a way to encourage websites to take better measures to protect their users. Many websites don’t encrypt their users’ sessions from start to finish, making those sessions prone to hackers. This extension shows just how easy it is for people to hijack sessions on these websites and is making Internet users mindful of just how susceptible they are. 

How is Firesheep a threat to me? 

Since the introduction of Firesheep many people have taken advantage of the add-on in order to acquire access to other people’s accounts. Because of its fairly easy-to-use interface, hacking can now be done by just about anyone. 

What Firesheep does is open a sidebar in the Firefox web browser that shows the hacker who else on that Wi-Fi network is logging into the vulnerable sites and lets him or her immediately start using their accounts. Because most social networking sites are not entirely encrypted, users of practically any of those sites are vulnerable to session hijacking. 

How can I protect myself? 

Programmers have worked quickly in response to Firesheep. In the weeks following the launch of Firesheep a number of applications have been built that are specifically designed to protect users from session hijacking.

  • Force-TLS lets you identify sites on which you would like to force the use of the HTTPS protocol, making your cookies invisible to Firesheep http://bit.ly/9yf8Mr
  • HTTPS Everywhere, like Force-TLS lets your browser change to HTTPS on any site you specify in the Firefox Add On Preferences menu http://bit.ly/cDMQIW
  • VPN clients authenticate and encrypt anything sent while using the client. You can use your corporate VPN if you have one, or you can employ a pay VPN service such as AlwaysVPN http://bit.ly/ateKFK

 

These programs offer protection from session hijackers as well as
other hackers. It’s essential to keep in mind, however, that
Firesheep is just the latest in a continuous series of threats.
Protecting your information from Firesheep is essential but remember
to be conscious of other security threats and to be extra cautious
when using unsecured Wi-Fi.

Tags: , , , , , , , , , , , , , , , , ,
Posted in Business | No Comments »

BEWARE OF THE ANTI-VIRUS

Monday, January 18th, 2010

About three weeks ago I sat down in front of my laptop to do my homework and a screen that looks like the one below popped up telling me I had serious threats/viruses on my computer.  Looks legitimate right?

antivirus

WRONG!!!! This anti-virus “software” was the virus. However, I didn’t think anything of it until I was suddenly locked out of the sites I frequent, such as my school, my Gmail, my bank, etc. I may not be Miss Techie, but I do know enough to recognize that this wasn’t normal. So, in casual conversation with Zach, who is a Mr. Techie,  regarding the  strange behavior of my computer, before I was even half way done he said, “You have a virus”. Those dreaded words rang in my ears as I began to see the dollars falling from my wallet. Luckily, I work for the best IT company on earth and Zach was able to remove the virus within one day and install legitimate firewalls and virus protections.

Ironically, that same evening I was watching the nightly news where they were featuring a story on “New Organized Crime Rings”…HACKERS. Apparently, technology is not only transforming the way we do business, it has transformed theft as well. The newest trend amongst thieves is to send out   these nasty little parasites, disguised as helpful software, that infect your computer allowing the hacker to track your key strokes, thus gaining access to all of your personal passwords and information. A local OC business man was recently taken for $1,000,000 due to this type of scam. OUCH!

Two days ago, I was out sick and received an email from Zach saying three clients in the past week had been hit with the same thing and decided that YOU need to be aware of what is out there!!!! He sent me this really informative article:   Take a look, it could save you a lot of time, money & heart ache!

Beware fake anti-virus programs

Tags: , , , , , , , , , , , , , , , , , , ,
Posted in Business, Computer Support, Tips | No Comments »