1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Web apps over Wi-Fi puts data at risk

Discussion in 'News' started by tripwire45, Aug 13, 2007.

  1. tripwire45
    Honorary Member

    tripwire45 Zettabyte Poster


    Web apps over Wi-Fi puts data at risk

    Users who access Google's Gmail or the Facebook social-networking site over Wi-Fi could put their accounts at risk of being hijacked, according to research from Errata Security, a computer security company. It's not just those sites but any rich Web applications that exchange account information with users, including blogging sites such as Blogspot or even SaaS (software as a service) offerings such as Salesforce.com, that could pose a risk for users, wrote Errata CEO Robert Graham and Chief Technology Officer David Maynor in a paper.

    Article at InfoWorld.
    Certifications: A+ and Network+


    1. dmarsh
      Is this really true ? How easy is it to sniff on a network using WPA ? Yep I know alot of access points are still using WEP and everyone knows it can be cracked in 5 minutes. Also best practice is not to store a password and username in a cookie and just use a session identifier. The session establishment should always be performed over SSL. Maybe they can hijack an exisiting session and then view non SSL parts of the site ?

    Share This Page