Skip to main content

Firesheep exposes gaping Wi-Fi security holes

best-firefox-add-onsIn case you weren’t already weary of Internet security plagues, here’s a new one for you. Firesheep, a downloadable extension for Firefox, can now make it more than possible for someone to take over your Wi-Fi session. It makes it really easy.

Once installed, a person can hijack your Wi-Fi session, including the ability to access Twitter, Facebook, WordPress, and Amazon accounts, among others.

Who’s responsible for this? Software developer Eric Butler says he created the app in order to show the masses how easy it is for their accounts to be highjacked over a Wi-Fi connection.  And if you were already aware of this, he is simply confirming it for you.

On his blog, Butler explains the simplicity of Firesheep. “It’s extremely common for websites to protect your password by encrypting the initial login, but surprisingly uncommon for websites to encrypt everything else. This leaves the cookie (and the user) vulnerable.” Butler has made the add-on openly available and very simple to download and use – so anyone with a Wi-Fi connection and a strong sense of curiosity can easily try it out.

Wi-Fi security isn’t a new issue. Concern about accessing secure information over a public connection has been loudly voiced, but the effortlessness and availability of Firesheep makes it easy to use by anyone, even those with little to no technical knowledge.

Butler insists his motives are pure, that website security needs to acknowledge these holes and fix them before more people like him won’t exploit them.

Editors' Recommendations

Molly McHugh
Former Digital Trends Contributor
Before coming to Digital Trends, Molly worked as a freelance writer, occasional photographer, and general technical lackey…
These are the airports that actually have really fast public Wi-Fi
MacBook Air sitting on a table in an airport.

With the holiday travel season quickly approaching, there is expected to be an increased number of travelers at airports across the U.S., and therefore significantly more people attempting to connect to free airport Wi-Fi at the same time.

Stable connections for free Wi-Fi hot spots can be a hassle in any location, but airport travel offers a unique situation, where internet speed options can vary depending on whether they are free or paid, or a perk of another subscription service.

Read more
This Wi-Fi security flaw could let drones track devices through walls
Professor Ali Abedi flying Wi-Peep standing against brick wall.

A research team from the University of Waterloo has attached a device to a drone that can use vulnerabilities in Wi-Fi networks to see through walls.

Imagine intruders being able to track people by the devices they have on them or find weak spots in their homes. This alarming possibility has been proven by a device called Wi-Peep, which is essentially $20 of easily-purchasable hardware, an off-the-shelf quadcopter, and the work of Dr. Ali Abedi and his team at the University of Waterloo.

Read more
Google Nest Wi-Fi Pro adds Wi-Fi 6E but loses compatibility
Google Nest Wi-Fi Pro in Lemongrass color rests on a shelf.

Google just released a new Wi-Fi router, the Nest Wi-Fi Pro, as part of its ongoing efforts to make it quicker and easier to watch videos on YouTube, do a Google search, or connect to your Nest smart home devices. Without reliable internet access, that Google-y goodness might not be available. It's also more eye-catching than earlier models and up to twice as fast but there are a few concerns with this new mesh router.

Nest Wi-Fi pro adds the latest wireless standard, Wi-Fi 6E, which has three bands instead of the usual two. That means the Nest Wi-Fi Pro can connect to older devices at 2.4 and 5 GHz, as well as newer technology using the latest 6GHz radio frequency band.

Read more