Log in

View Full Version : DroidSheep is a Good Reminder to Browse Safely

Craig Horlacher
10-04-2011, 07:00 PM
<div class='os_post_top_link'><a href='http://lifehacker.com/5844632/droidsheep-brings-firesheep+like-session+hijacking-to-android-devices' target='_blank'>http://lifehacker.com/5844632/droid...android-devices</a><br /><br /></div><p><em>"...people running DroidSheep can use victims' accounts, gaining access to sites that don't use a secured and encrypted SSL connection..."</em></p><p><img src="http://images.thoughtsmedia.com/resizer/thumbs/size/600/adt/auto/1317745921.usr309.jpg" style="border: 1px solid #d2d2bb;" /></p><p>DroidSheep is a freely available app that allows you to steal session information for web sites that are not well secured.&nbsp; Using DroidSheep you can make your phone look like the network router so all external network requests pass through it.&nbsp; DroidSheep will then identify different web sessions and show you which ones are most likely to be exploitable.&nbsp; You can check out the source link to see a video of how it works.</p><p>This app makes stealing information look easy.&nbsp; Keep that in mind the next time you enter sensitive information on a web site.&nbsp; Make sure your session is encrypted.&nbsp; You can look for the "HTTPS" at the beginning of a URL to make sure at least basic security is in place.&nbsp; Most browsers also have an indicator that will let you know when a connection is secure.&nbsp; Google actually removed DroidSheep from the Android Market but it's still available on the <a href="http://droidsheep.de/" target="_blank">developers web site</a>.&nbsp; If you use it, you're responsible for your actions.</p>