Skip to main content
  1. Home
  2. Computing
  3. News

Facebook and Twitter fail basic security test

By

Riding off of the coattails of the FireSheep Firefox exploit, Digital Society has studied the basic security functions of 11 popular websites and given them grades. The results are not stellar for most, especially social networking sites Twitter and Facebook, which both received failing grades.

The reasons why they failed get quite technical, but center around the lack of full SSL (Secure Sockets Layer) protection on the sites. One easy way to know if you are on an SSL protected site is if your browser bar says “https://” instead of the standard “http://.” If you are not, then it is possible that your information could be stolen because it is not encrypted. Facebook and Twitter do not encrypt data all the time, a feature that they should implement.

online-security-report-card-facebook-twitter-2010
Image used with permission by copyright holder

There are four basic ways to get hacked (studied here)

If a site doesn’t have SSL browsing support, anyone can see what you’re browsing at any time, but only what you’re browsing currently.

In a partial sidejacking, an attacker gets a hold of a users authentication cookies and gains partial access to their account. An authentication cookie is a small file that sites on your computer, allowing you to revisit a website without re-logging in every time. It tells Facebook: “hey, I’m still the same computer; let me in.” In a partial sidejacking, some of your information is visible to the attacker, but he/she can’t entirely breach your account.

Recommended Videos

In a full sidejacking, the attacker gets full control over your account, but can’t get your username or password. Usually he/she can do everything except change the password because most sites request that you re-type the old password first. Full sidejacking is scary. In Hotmail, for example, an attacker would be able to read all of your emails.

Finally, in a full hijacking, the attacker gains control over everything in your account and can change anything, including your password. Sites that do not have SSL authentication leave you vulnerable to a full hijacking.

Be careful

Our best advice: be careful where you browse Facebook, Twitter, and other sites with logins. If you’re on public Wi-Fi spot, make sure that it is password protected. This should encrypt your information, making it more difficult for others to hack you.

Editors' Recommendations

Topics
Jeffrey Van Camp
Jeffrey Van Camp
Former Digital Trends Contributor
As DT's Deputy Editor, Jeff helps oversee editorial operations at Digital Trends. Previously, he ran the site's…
The 4 best Raspberry Pi alternatives in 2024
Inside a Raspberry Pi.

When it comes to powerful and reliable mini-computers, one of the most popular options is the Raspberry Pi. In fact, this particular PC gets most of the mini-CPU fanfare, but that doesn’t mean it’s the only small computer worth considering. If you’re thinking about investing in a bite-sized machine, we’ve put together this list of four mini PCs in direct competition with Raspberry Pi.

Read more
Best 2-in-1 laptop deals: Turn your laptop into a tablet for $349
Lenovo Yoga 9i 14 Gen 7 laptop sits on a small desk folded like a tent.

If you find that your traditional laptop isn't quite doing it for you in terms of workflow, then you might want to consider taking some of what the best tablets and the best laptops have and combining them together in the form of 2-in-1 laptops. These can offer a ton of versatility to your workflow, such as being able to use them in handheld mode for drawing or presenting, as well as the fact that most, if not all, are touch-enabled, so you don't even have to use a mouse if you don't want to.
There are, of course, a ton of great choices out there, but some of the best 2-in-1 laptops can get quite expensive, especially when you're buying them from some of the best laptop brands out there. That's why we've gone out and looked for our favorite 2-in-1 laptop deals to help save you some effort. We've pulled from HP laptop deals, Dell laptop deals, the classic 2-in-1 Surface Pro deals, and more. Check them out below.

Asus Chromebook Plus 2-in-1 -- $349, was $499

Read more
Best Acer laptop deals: From Chromebooks to gaming laptops
Acer Nitro V

If you're looking to pick up a new laptop, then you may want to consider the Acer lineup, especially considering it's one of the best laptop brands when it comes to budget-oriented computers. That even includes gaming laptops. Even better, you can find a lot of great deals on Acer's laptops, meaning that the already budget-friendly laptops become even cheaper, which is why we've gone out to find our favorite deals and list them for you below. That said, if you can't find what you're looking for below, be sure to check out some of these other great laptop deals as well, since there is some crossover between this list and our picks for the best Chromebook deals, 2-in-1 laptop deals and gaming laptop deals.
Aspire 1 -- $200, was $300
 

If you need something very basic just to get online and do some general productivity and day-to-day stuff, then the Acer Aspire 1 is a good budget option. It has a 15.6-inch screen with an FHD resolution, which is nice to see at this price point, and the screen bevels are actually relatively thin for a budget-oriented product. Of course, it does come with a lower-end Intel Celeron N4500 and only 4GB of RAM, which means Windows 11 is in the reduced S mode, but the lower spec does mean the price can stay really low too.

Read more