Skip to main content
  1. Home
  2. Computing
  3. News

Facebook and Twitter fail basic security test

By

Riding off of the coattails of the FireSheep Firefox exploit, Digital Society has studied the basic security functions of 11 popular websites and given them grades. The results are not stellar for most, especially social networking sites Twitter and Facebook, which both received failing grades.

The reasons why they failed get quite technical, but center around the lack of full SSL (Secure Sockets Layer) protection on the sites. One easy way to know if you are on an SSL protected site is if your browser bar says “https://” instead of the standard “http://.” If you are not, then it is possible that your information could be stolen because it is not encrypted. Facebook and Twitter do not encrypt data all the time, a feature that they should implement.

online-security-report-card-facebook-twitter-2010
Image used with permission by copyright holder

There are four basic ways to get hacked (studied here)

If a site doesn’t have SSL browsing support, anyone can see what you’re browsing at any time, but only what you’re browsing currently.

In a partial sidejacking, an attacker gets a hold of a users authentication cookies and gains partial access to their account. An authentication cookie is a small file that sites on your computer, allowing you to revisit a website without re-logging in every time. It tells Facebook: “hey, I’m still the same computer; let me in.” In a partial sidejacking, some of your information is visible to the attacker, but he/she can’t entirely breach your account.

Recommended Videos

In a full sidejacking, the attacker gets full control over your account, but can’t get your username or password. Usually he/she can do everything except change the password because most sites request that you re-type the old password first. Full sidejacking is scary. In Hotmail, for example, an attacker would be able to read all of your emails.

Finally, in a full hijacking, the attacker gains control over everything in your account and can change anything, including your password. Sites that do not have SSL authentication leave you vulnerable to a full hijacking.

Be careful

Our best advice: be careful where you browse Facebook, Twitter, and other sites with logins. If you’re on public Wi-Fi spot, make sure that it is password protected. This should encrypt your information, making it more difficult for others to hack you.

Editors' Recommendations

Topics
Jeffrey Van Camp
Jeffrey Van Camp
Former Digital Trends Contributor
As DT's Deputy Editor, Jeff helps oversee editorial operations at Digital Trends. Previously, he ran the site's…
Dell’s XPS 13 for $599 deal is back, and who knows for how long
The Dell XPS 13 in front of a window.

Dell almost always has great laptop deals and for a little while now, it’s been selling an older model of the Dell XPS 13 for just $599. That deal continues today but we’re really not sure how long it’s going to stick around for. It feels like it must be ending very soon. The laptop usually costs $799 so you’re saving $200 but overall, this is a fantastic deal for the hardware involved. If you’re keen to learn more before the deal ends, keep reading.

Why you should buy the Dell XPS 13
Dell is one of the best laptop brands out there so you simply can’t go wrong with purchasing from it. With this model, you get a 12th-generation Intel Core i5-1230U processor along with 8GB of memory and 256GB of SSD storage. There’s also a 13.4-inch full HD+ screen with 1920 x 1200 resolution, 500 nits of brightness, and anti-glare properties. That’s fairly standard stuff at this price but it’s the build quality of the Dell XPS 13 which makes it stand out so much.

Read more
M4 vs. M3: How much better are Apple’s latest chips?
An official rendering of the Apple M4 chip.

Apple has announced the M4 chip, its successor to the M3 that’s currently found in a bunch of Macs and iPads. The M3 is an excellent chip and a real leap above the M2 that came before it, so the question is whether the M4 can manage a similar feat.

Right now, the M4 is only in the iPad Pro, and that means information about how good it is and what it does is rather limited. But if you’re interested in finding out more, you’re in luck, as we’ve gathered up everything we know about Apple’s M4 chip and compared it side by side with the M3. If you want to learn more about Apple’s next chip -- and how it compares to the M3 -- read on.
Where can you find these chips?

Read more
iMac deals: New, renewed and refurbished iMac computers
Apple iMac with Retina 5K Display review close

If you're in the Apple ecosystem and need a desktop computer rather than something like a MacBook, then you'll want to go for the Apple iMac, which is one of the best all-in-one computers on the market. There are quite a few screen sizes and specs to pick from, and if you're willing to go for a renewed option, you can get some older yet still powerful iMacs for a great price with desktop deals. Even if you aren't, there are still some great Apple deals you can take advantage of to save yourself some money, which is why we went out and scoured the internet for the best deals we could find. If you need something portable, check out MacBook deals. For extra savings, check out refurbished MacBook deals.
Apple 21.5-inch iMac (2018) Renewed -- $409, was $460

Even cheaper than any of the MacBook deals going on, this Apple 21.5-inch iMac (2018) might be a few years old but it offers plenty of juice for the price. That's the beauty behind many iMacs -- they last a long time thanks to offering reliable hardware and the benefits of MacOS, which tends to mean they stay fast for awhile. In the case of the 2018 21.5-inch iMac, you get a 2.7GHz Quad-Core Intel Core i5 processor paired up with 16GB of memory which is a great set of specs for ensuring you can get plenty of work done.

Read more