Facebook and Twitter Security Over Public Networks for Firefox and Chrome

 Posted by Hans at 05:12  1 Response »
Nov 012010
 

ÆtherCzar briefly mentioned this last week, but it bears repeating in further detail.

When you log in to Facebook, Twitter, or other such sites over an unsecured WiFi network, you are broadcasting your identity and login information in a way that anyone else on the network can detect and exploit. The technical difficulty of the interception formerly provided some small margin of security, but no longer. There’s an easy-to-install plug-in that makes stealing your identity and hijacking your Facebook or Twitter account as simple as point-and-click. Here are a couple of articles from Gawker (Now Anyone at Your Café Can Hijack Your Facebook Account) and TechCrunch (Firesheep In Wolves’ Clothing: Extension Lets You Hack Into Twitter, Facebook Accounts Easily) about the exploit.

If you still want to be using Facebook or Twitter over unsecured public networks, there is a solution however. If you are using the Firefox browser, you can fix the security problem with an add-on called Force-TLS. This add-on requires Facebook or other sites you designate to encrypt their communications. You’ll see the “http” in the URL change to “https” to let you know you are secure. Be sure to check “force subdomains” when adding www.facebook.com to the secured list, however, or Facebook will happily start out encrypted but then switch to an unencrypted link as you are clicking away.

I’ve been happy with it. Pages will be slower to load since both sides must encrypt and decrypt, but it’s worth it if you want to use Facebook (or Twitter, or other such sites) in public places on open WiFi connections.

A similar extension is available for users of Chrome.

 WiFi  Tagged with: , , , , ,

GMRS, RFID, RTLS, and WiFi Update

 Posted by Hans at 05:12  1 Response »
Oct 262010
 

A few updates:

 RFID, RTLS, Technology, UWB, WiFi  Tagged with: , , , , , , , , , , , , ,

Location and RTLS Updates

 Posted by Hans at 05:12  2 Responses »
Oct 112010
 

It was a busy week to have been out on vacation. Here are some RTLS and Location-Based Services links to help get caught up:

 Location-Based Services, Near-Field, Patents, RTLS, UWB, WiFi  Tagged with: , , , , , , , ,

Showing Sexy Russian Spies How It’s Done

 Posted by Hans at 05:12  No Responses »
Jul 262010
 

Russian spy Anna Chapman.

I made an off-hand comment a while back to my Facebook friends that I wondered how it was the “Mata Hari of the 21st century” had been working for years to infiltrate American social circles for her Russian spymasters and somehow ended up with less than 200 Facebook friends.

Anna could have taken lessons from American security consultant Thomas Ryan of Provide Security. Ryan created a profile for a fictitious 25 year-old MIT alum named Robin Sage with a job as a “Cyber-Threat Analyst.” “Robin” proceded to “acquire social network connections with more than 300 professionals in the National Security Agency, DoD, and Global 500 corporations.” Her Facebook total is on par with Anna’s, but “Robin’s” connections appear more valuable.

Of course, the Feds aren’t talking, so it’s tough to tell how “well” Anna did in comparison. Her social networking does not appear to have been up to “Robin’s” standards. And the fact that she had been under surveillance for a while tends to indicate there were no great worries she was passing highly sensitive information.

More: Xeni Jardin at BoingBoing, Washington Times.

 Liberty, Politics, & Current Events  Tagged with: , , , , ,
© 2010-11 Hans Schantz except as noted. Suffusion theme by Sayontan Sinha

Switch to our mobile site