Crack allows HTTPS session hijacking

Written by Randy on . Posted in Internet, Randy's Blog, Security, Tech

A Exploit called CRIME may make your browsing less secure.  Best defense?  Update your browsers and disable compression on your web servers.  Not sure how?  Call or e-mail us. See the full article on Ars Technica below. Crack in Internet’s foundation of trust allows HTTPS session hijacking | Ars Technica. The below video is a bit Techie, but it’s showing the Exploit in action.  Clearing the cookie, generating a new one, then showing that this simple routine will use a brute force attack to get access to your session cookie.  

Trackback from your site.

Leave a comment

You must be logged in to post a comment.