blackbar
idcloak on Google+
IDCLOAK KNOWLEDGE CENTER
 

FREE WEB PROXY

More options
Proxy server settings:



 

Faceniff SSLstrip - Facebook And Twitter Account Hacked

to_the_top_navigation

Ever had your Twitter or Facebook account hacked? Well, there is a sizable chance that a Faceniff download was behind the attack. What is Faceniff? What can it do? What are its limitations? And how can you avoid having your Facebook or Twitter account hacked?

How to hack a Facebook account and Twitter account has never been easier. Computer spying is no longer the domain of experienced hackers or even of script kiddies (newbie hackers) – it is now something everyone can do. To hack a Facebook, Amazon or Twitter account in a matter of moments, an attacker needs one thing and one thing only: the desire to do so.

Descriptive Image
you have been hacked

Faceniff is a web sniffer program for Android devices developed by a Poland-based software designer (the man also behind WiFiKill); he claims his intentions were to demonstrate the lax security measures used by modern social media sites to protect user accounts. Once attackers download Faceniff onto their smartphone or tablet, they have the power to infiltrate any social media account accessed on a shared WiFi network by any device – even if WPA2 encryption guards the wireless network. Through a simple, easy-to-use interface, Faceniff employs ARP spoofing to sidejack login cookies , which then grants the attacker the ability to roam freely through the sidejacked social media account as if it were his own.

But a recent addition to Faceniff's features has put the program a leap ahead of other emerging threats to wireless security today. The latest version of Faceniff now additionally employs an SSL strip mechanism which allows the attacker to completely circumvent HTTPS encryption. When the mechanism is activated on the user interface, the program will sidejack cookies even if the victim's entire social media session is guarded by HTTPS.

You are not only at risk of having your Twitter and Facebook account hacked. Here is a list of all sites that the current version of Faceniff download can easily break into:

  • facebook.com
  • youtube.com
  • twitter.com
  • amazon(com/de/co.uk)
  • meinvz.net
  • nk.pl
  • tumblr.com
  • blogger.com
  • vkontakte.ru
  • studivz.net
  • tuenti.com
  • myspace.com
  • vk.com

Now an Easy Means to Hack a Twitter Account is Available

In the beginning of 2012, in response to the rise in cookie sidejacking software like Faceniff, Firesheep and Droidsheep, Twitter activated permanent HTTPS connections as default on all Twitter accounts. For a few months, anyone who wanted to obtain the means to hack a Twitter account would require considerable hacking skill to do so. With the release of Faceniff's SSL strip feature, however, now even an unskilled user can hack a Twitter account at the click of a button.

You May Find Facebook Hacked Even with HTTPS Activated Permanently

In case the message hasn't sunk in yet, let me repeat it: even if you have activated the Facebook Secure browsing option in your Facebook account settings, you can still have your Facebook account hacked by the new version of Faceniff. The attacker simply needs to activate the SSL strip feature.


Part II: Limitations of Faceniff

Part III: How to Protect Yourself from Faceniff


Read more:

Written by: 
Robin Welles; internet security team, expats team