Slashdot Mirror

← Back to Stories (view on slashdot.org)

Black Hat Presentation Highlights SSL Encryption Flaws

Posted by timothy on Thursday February 19, 2009 @03:53AM from the well-hey-nothin's-perfect dept.

nk497 writes "Hackers at the Black Hat conference have shown that SSL encryption isn't as secure as online businesses would like us to think. Independent hacker Moxie Marlinspike showed off several techniques to fool the tech behind the little padlock on your screen. He claimed that by using a real world attack on several secure websites such as PayPal, Gmail, Ticketmaster and Facebook, he garnered 117 email accounts, 16 credit card numbers, seven PayPal logins and 300 other miscellaneous secure logins."

3 of 152 comments (clear)

Min score:

Reason:

Sort:

Re:Oh god by mapsjanhere · 2009-02-19 04:00 · Score: 1, Offtopic

Well, if the hacker types like the submitter, I'm not too worried about my login credentials.

--
I'm aging rapidly, I bought a new game and had no idea if my machine was good for it.
Re:God forbid... by Ginger+Unicorn · 2009-02-19 04:49 · Score: 0, Offtopic

Transalations? How well did your third grade go? :p

--
(1.21 gigawatts) / (88 miles per hour) = 30 757 874 newtons
Re:The problem is with the trusting user, and can by Kickasso · 2009-02-19 06:18 · Score: 0, Offtopic

http://en.wikipedia.org/wiki/SecurID
No reader is needed.