http://www.realtechnews.com/posts/4706 Independent Tech News and Product Reviews from former VP and head of CNET.com and Longtime Computer Shopper Columnist, Alice Hill author of the popular "Hard Edge" column. Originally named AliceandBill.com. Mon, 06 Oct 2008 12:46:22 +0000 http://wordpress.org/?v=2.0.4 http://www.realtechnews.com/posts/4706#comment-617160 Tue, 25 Mar 2008 07:04:29 +0000 http://www.realtechnews.com/posts/4706#comment-617160 how to hacking the gmail how to hacking the gmail

]]> http://www.realtechnews.com/posts/4706#comment-398336 Sun, 09 Dec 2007 05:24:04 +0000 http://www.realtechnews.com/posts/4706#comment-398336 [...] » Watch Out: Gmail Account Hacked Over Wifi at DefCon » Blog Archive Alice Hill’s Real Tech News - Independent Tech There is a simple way to guard yourself against this hack… All you have to do is remember to manually tell Gmail to use SSL for the entire session by using the address: https://gmail.com. (tags: gmail hack defcon wifi security) [...] […] » Watch Out: Gmail Account Hacked Over Wifi at DefCon » Blog Archive Alice Hill’s Real Tech News - Independent Tech There is a simple way to guard yourself against this hack… All you have to do is remember to manually tell Gmail to use SSL for the entire session by using the address: https://gmail.com. (tags: gmail hack defcon wifi security) […]

]]> http://www.realtechnews.com/posts/4706#comment-246840 Tue, 07 Aug 2007 22:22:01 +0000 http://www.realtechnews.com/posts/4706#comment-246840 [...] Source: RAW Feed A speaker at DefCon demonstrated live how it’s possible to choose any IP address visible on an wireless network, and intercept the cookies being exchanged. That enabled him to GRAB PASSWORDS. In the demo, he used utilities called Hamster and Ferret created by Errata Security to snatch a Gmail password, but says Yahoo passwords are snatchable as well. The solution? use SSL by typing https in front of the URL instead of http (as in https://gmail.com).(props to RealTechNews) [...] […] Source: RAW Feed A speaker at DefCon demonstrated live how it’s possible to choose any IP address visible on an wireless network, and intercept the cookies being exchanged. That enabled him to GRAB PASSWORDS. In the demo, he used utilities called Hamster and Ferret created by Errata Security to snatch a Gmail password, but says Yahoo passwords are snatchable as well. The solution? use SSL by typing https in front of the URL instead of http (as in https://gmail.com).(props to RealTechNews) […]

]]> http://www.realtechnews.com/posts/4706#comment-246284 Mon, 06 Aug 2007 23:44:35 +0000 http://www.realtechnews.com/posts/4706#comment-246284 I always feel a little less secure the week following Defcon. :( I always feel a little less secure the week following Defcon.

]]> http://www.realtechnews.com/posts/4706#comment-246178 Mon, 06 Aug 2007 20:15:40 +0000 http://www.realtechnews.com/posts/4706#comment-246178 The reason that Gmail is in the title is that it was the website that the attack was demonstrated on. That's why it reads "Gmail Account Hacked Over Wifi at DefCon", because that's what happened. I clearly state in the first paragraph that this affects a large number of other websites (almost all websites that one logs into). The reason that Gmail is in the title is that it was the website that the attack was demonstrated on. That’s why it reads “Gmail Account Hacked Over Wifi at DefCon”, because that’s what happened. I clearly state in the first paragraph that this affects a large number of other websites (almost all websites that one logs into).

]]> http://www.realtechnews.com/posts/4706#comment-246150 Mon, 06 Aug 2007 19:19:51 +0000 http://www.realtechnews.com/posts/4706#comment-246150 The thing that annoys me about articles like this one are the headlines: designed to grab your attention but in doing so mislead. Having 'Gmail' in the headline gets more reads but the story is REALLY about the insecurity of using unencrypted WiFi, not the insecurity of Google mail. Any one who uses public WiFi without encryption is begging for trouble regardless of which email provider they use. The thing that annoys me about articles like this one are the headlines: designed to grab your attention but in doing so mislead. Having ‘Gmail’ in the headline gets more reads but the story is REALLY about the insecurity of using unencrypted WiFi, not the insecurity of Google mail. Any one who uses public WiFi without encryption is begging for trouble regardless of which email provider they use.

]]>