Threat of the month: Firesheep

Share this article:
Randy Abrams
Randy Abrams


What is it?

Firesheep is a Firefox add-on that automates the hijacking of accounts that are not secured by SSL (https).

How does it work?
When a user logs onto Facebook, Amazon, Twitter or any number of other accounts, the user name and password are encrypted, but the cookie that the site sets to remember the user is not encrypted as it is sent to that person's computer. This means that if the user is at their local coffee shop using their open Wi-Fi system and logs onto a website, the cookie can be intercepted by anyone else using the same Wi-Fi network. By intercepting the cookie, the attacker can use that user's account.

How can I prevent it?
There are ways to protect your accounts. You can use a VPN, but do not expect your corporate VPN to do the job. Typically, only traffic between your computer and the company are tunneled, leaving your webmail and other accounts unprotected. The safest approach is not to surf anywhere that requires a password when you are on a public network.

– Randy Abrams, director of technical education, ESET

Share this article:

Next Article in Opinions

Sign up to our newsletters

More in Opinions

Hackers only need to get it right once, we need to get it right every time

Hackers only need to get it right once, ...

Hackers only need to find one weak point to steal valuable information. On the flip side, security pros need to account for every possible scenario.

Successful strategies for continuous response

Successful strategies for continuous response

While it isn't realistic for organizations to expect that it will never happen to them, a rapid, professional and continuous response can limit their scope and reputational impact.

When it comes to cyber attacks, predictions are pointless but preparation is key

When it comes to cyber attacks, predictions are ...

Rather than predicting the next lightning strike it is far better to pay attention to the areas we already know are vulnerable.