The sickening thing about man in the middle attacks is that you will never know it happened unless the software is smart enough. The reason chrome caught it is because of it's strong security feature. The irony is that you bend over backwards with Chrome and expose all your personal browsing habits and history to Google, but at least it prevents others from snooping on you. \
In addition both Google and Firefox addressed the problem a couple of weeks ago, end of August. Use either of those browsers to avoid this particular problem.
The sickening thing about man in the middle attacks is that you will never know it happened unless the software is smart enough. The reason chrome caught it is because of it's strong security feature. The irony is that you bend over backwards with Chrome and expose all your personal browsing habits and history to Google, but at least it prevents others from snooping on you. \
Agree. Firefox until the update came out was a safe bet. Chrome is far more invasive than people think.
Do you know of a single instance where this was exploited? Apple's security updates come before anything happens at least 90% of the time. The only exploits I've ever seen actually exploited were MacDEFENDER and MacWhatevertheotheronewas.
It is a big issue here in The Netherlands. The exploit is months old, DigiNotar kept quit after they found out. And many people got screwed as a result. The exploit is still a big issue, with misuse of social security numbers and such. I'd post links but all sites I'm reading are in Dutch. Of course you can search yourself for info if you're interested...
"ComodoHacker took ten days to get inside DigiNotar's servers. Once inside, he created 531 fake certificates, for sites including Google, Facebook and Skype, as well as the CIA, MI6 and Mossad. These certificates could be used to spoof websites in order to grab personal information, or even to read email on Gmail servers.
After what some see as an unusually lengthy two week wait, Apple last Friday finally shipped a software update to block Safari users from reaching sites secured with DigiNotar certificates. Despite Apple's recent moves to improve its security teams, that delay was too lengthy, some say."
Comments
The sickening thing about man in the middle attacks is that you will never know it happened unless the software is smart enough. The reason chrome caught it is because of it's strong security feature. The irony is that you bend over backwards with Chrome and expose all your personal browsing habits and history to Google, but at least it prevents others from snooping on you.
In addition both Google and Firefox addressed the problem a couple of weeks ago, end of August. Use either of those browsers to avoid this particular problem.
http://forums.cnet.com/7726-6132_102-5195666.html
The sickening thing about man in the middle attacks is that you will never know it happened unless the software is smart enough. The reason chrome caught it is because of it's strong security feature. The irony is that you bend over backwards with Chrome and expose all your personal browsing habits and history to Google, but at least it prevents others from snooping on you.
Agree. Firefox until the update came out was a safe bet. Chrome is far more invasive than people think.
Do you know of a single instance where this was exploited? Apple's security updates come before anything happens at least 90% of the time. The only exploits I've ever seen actually exploited were MacDEFENDER and MacWhatevertheotheronewas.
It is a big issue here in The Netherlands. The exploit is months old, DigiNotar kept quit after they found out. And many people got screwed as a result. The exploit is still a big issue, with misuse of social security numbers and such. I'd post links but all sites I'm reading are in Dutch. Of course you can search yourself for info if you're interested...
http://blogs.computerworld.com/18927...ck_effectively
From the article:
"ComodoHacker took ten days to get inside DigiNotar's servers. Once inside, he created 531 fake certificates, for sites including Google, Facebook and Skype, as well as the CIA, MI6 and Mossad. These certificates could be used to spoof websites in order to grab personal information, or even to read email on Gmail servers.
After what some see as an unusually lengthy two week wait, Apple last Friday finally shipped a software update to block Safari users from reaching sites secured with DigiNotar certificates. Despite Apple's recent moves to improve its security teams, that delay was too lengthy, some say."