An anonymous reader writes: A pair of software tools demonstrated at the Black Hat security conference today automate the interception of cookie files transmitted over a wireless network that allow attackers to hijack accounts for Gmail, Hotmail, Facebook and a number of other Web 2.0 services, washingtonpost.com's Security Fix reports. From the story: "the attack works even if victims subsequently change their passwords, or actively sign out of their accounts. However, attackers would be unable to change the victim's password, as all of the above-named services force the user to reenter the current password before changing it to a new one."
Attend or create a Slashdot 20th anniversary party! DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Check out the new SourceForge HTML5 Internet speed test. ×