While we have covered facebook privacy issues before, a network’s platform privacy settings are only one part of your battle to protect privacy.

Most folks know to not send financial information over unsecured wireless networks, but accessing your social network using that free wi-fi in a park or coffee-shop may leave you more vulnerable than ever, thanks to a new browser plug-in “Firesheep” that lets others “eavesdrop” and even take-over your account via your cookies.  The unsettling development allows even the least-sophisticated user a potential hacker.  The folks at techcrunch have an article that goes over some of the details, and lists a number of popular sites that the plug-in can  hack:

Apparently many social network sites are not secured, beyond the big two [Facebook and Twitter], Foursquare, Gowalla are also vulnerable. Moreover, to give you a sense of Firesheep’s scope, the extension is built to identify cookies from Amazon.com, Basecamp, bit.ly, Cisco, CNET, Dropbox, Enom, Evernote, Facebook, Flickr, Github, Google, HackerNews, Harvest, Windows Live, NY Times, Pivotal Tracker, Slicehost, tumblr, Twitter, WordPress, Yahoo, Yelp. And that’s just the default setting— anyone can write their own plugins, according to the post.

Note: at the time of this posting, over 5,000 people had either tweeted the story or “liked” the story on Facebook!

UPDATE: As of  11/02, Microsoft has added Firesheep to its “malware” list:  Look here for more information from Microsoft on how to protect yourself.  (thanks to Frank Corrigan of Liberation Technology list-serv for this update information)

Advertisements