| Facebook Engineer Account Hacked In A Challenge
|
engine
msg:4165980 | 6:04 pm on Jul 7, 2010 (gmt 0) |
Facebook Engineer Account Hacked In A Challenge [news.softpedia.com] Several Facebook employees successfully hacked the password of a senior engineer as part of a challenge to test the security of the site's administrative system. In order to do it they employed an evil twin wireless attack.
|
|
Instead they went straight to the place where he was most vulnerable, at home. There the "hackers" instrumented what is known as an evil twin attack. They installed a rogue access point, duplicated the settings of his wireless network - same SSID, same channel - and waited.
Being in the comfort of his home and with his guard down, Keyani logged into the rogue access point without realizing anything was wrong. Unfortunately, his colleagues had a traffic snooper installed on the AP, which captured everything, including his Facebook password in plain text. |
|
|
rogerd
msg:4166735 | 7:05 pm on Jul 8, 2010 (gmt 0) |
Hmmm, I would have hoped for better security for a user with the keys to the control room. Not the most sophisticated hack, but very effective.
|
|
|
