chxo internets RSS

A network of memes,
by Chris Snyder

See also
CHXO Internet
twitter.com/64

Archive

Mar
6th
Fri
permalink
Video screenshot of Moxie Marlinspike’s latest public man-in-the-middle SSL attack. The slashes in the url are actually unicode characters that look like slashes, making them part of a valid Chinese domain name, which he owns. He’s proxying the bank site so everything looks right (it’s not a phishing attack!). The certificate is valid, so type your password! Seriously, the web is NOT safe for banking or any other high stakes activity. Period. It’s just too easy to be tricked into giving up your credentials to a MITM.

Video screenshot of Moxie Marlinspike’s latest public man-in-the-middle SSL attack. The slashes in the url are actually unicode characters that look like slashes, making them part of a valid Chinese domain name, which he owns. He’s proxying the bank site so everything looks right (it’s not a phishing attack!).

The certificate is valid, so type your password!

Seriously, the web is NOT safe for banking or any other high stakes activity. Period. It’s just too easy to be tricked into giving up your credentials to a MITM.