Exploit
1. Download an apps call Faceniff
2. Just run the Faceniff it will auto sniff user in the same wireless LAN. if the user log in to facebook without https..you are free to hijack his/her session.
Remediation
1. Under your facebook security setting. Always enable https
0 comments:
Post a Comment