Cookies help us display personalized product recommendations and ensure you have great shopping experience.

By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
SmartData CollectiveSmartData Collective
  • Analytics
    AnalyticsShow More
    cybersecurity efforts
    How Behavioral Analytics and AI Are Redefining Cybersecurity for Boca Raton Businesses
    14 Min Read
    data driven risk management in heatlhcare
    How Data Analytics Is Changing Healthcare Risk Management
    17 Min Read
    big data and customer service outsourcing
    How Data Analytics Improves Customer Service Outsourcing
    18 Min Read
    How a Specialized Marketing VA Improves Campaign Analytics
    How a Specialized Marketing VA Improves Campaign Analytics
    11 Min Read
    New Data Analytics Breakthroughs Give eCommerce Startups a Fighting Chance
    New Data Analytics Breakthroughs Give eCommerce Startups a Fighting Chance
    6 Min Read
  • Big Data
  • BI
  • Exclusive
  • IT
  • Marketing
  • Software
Search
© 2008-25 SmartData Collective. All Rights Reserved.
Reading: How Hackers Use SSL Strip to Obtain Secure Passwords [VIDEO]
Share
Notification
Font ResizerAa
SmartData CollectiveSmartData Collective
Font ResizerAa
Search
  • About
  • Help
  • Privacy
Follow US
© 2008-23 SmartData Collective. All Rights Reserved.
SmartData Collective > IT > Security > How Hackers Use SSL Strip to Obtain Secure Passwords [VIDEO]
Security

How Hackers Use SSL Strip to Obtain Secure Passwords [VIDEO]

Christian Crank
Christian Crank
3 Min Read
SHARE

Passwords are generally considered the first line of defense between cyber criminals and your data. In order to help prevent security breaches via logins, it’s crucial to pick strong passwords that are different for each of your important accounts, and it is good practice to update your passwords regularly. Despite these recommendations, people still employ weak passwords like “123456” and “password” – and then wonder why their data is stolen.

Passwords are generally considered the first line of defense between cyber criminals and your data. In order to help prevent security breaches via logins, it’s crucial to pick strong passwords that are different for each of your important accounts, and it is good practice to update your passwords regularly. Despite these recommendations, people still employ weak passwords like “123456” and “password” – and then wonder why their data is stolen.

As I’ve discussed here before, there are a number of ways hackers crack passwords. What I’ve also emphasized is that knowing the techniques hackers use is THE best way to combat them. In this short video, I will demonstrate how to use SSL Strip to obtain secure passwords. In addition to showing you how hackers carry out this attack, this video will guide you through the process so it can be applied to your company’s system to see if it’s accessible through weak passwords.

SSL Strip is a tool that essentially reroutes encrypted HTTPS requests from network users to plaintext HTTP requests, effectively checking out all logins traveling along the network via SSL. Basically, it lets users connect via HTTP, logs their information, then redirects their connection to the originally-intended HTTPS server on the Internet.

More Read

Firesheep and social network security: What you need to know
Data Security Unveiled: Protecting Your Information in a Connected World
Tactics to Protect Against Most Common Cyber Attacks
Secure Lava Lamps, and Why True Internet Security Is Hard to Come by
Evolving Approaches to Cyber Threats

Watch and learn how SSL Strip allows users to detect wimpy passwords on the network.

As you saw, using SSL Strip to lift passwords is fairly straight forward. All organizations are susceptible to this type of attack. Those companies with strong password policies are less at risk.

It’s important to make sure your Web security is up-to-date. Remember, SSL Strip looks for HTTPS traffic and then redirects it to HTTP traffic, this is what makes it vulnerable. If the website is all HTTPS and not HTTP, SSL Strip cannot change the HTTPS link to a HTTP link. On a site note, if you find yourself needing to use a public network, or if your personal WIFI is not secured, then it’s probably not a good idea to use that network to access any of your personal accounts, lest you become a target for an SSL Strip attack.

Share This Article
Facebook Pinterest LinkedIn
Share

Follow us on Facebook

Latest News

cybersecurity efforts
How Behavioral Analytics and AI Are Redefining Cybersecurity for Boca Raton Businesses
Analytics Artificial Intelligence Exclusive Security
data driven risk management in heatlhcare
How Data Analytics Is Changing Healthcare Risk Management
Analytics Exclusive
big data for non-QR lending in real estate
How Real Estate Investors Can Use Big Data for Non-QM Lending
Big Data Exclusive
ai video ad generation
How to Build High-Performing Ad Creatives with an AI Short Ad Video Maker?
Artificial Intelligence

Stay Connected

1.2KFollowersLike
33.7KFollowersFollow
222FollowersPin

You Might also Like

data protection
Big Data

44% of CISOs See No New Investments to Stop Data Breaches

7 Min Read

Evernote’s Three Laws of Data Protection

4 Min Read
7 Things about VPNs Every Businessman Should Know
Security

Is the IRS’s E-File Security Ready for Prime Time?

4 Min Read
ai is a dangerous weapon in the hands of hackers
Artificial Intelligence

AI-Powered Cyberattacks: Hackers Are Weaponizing Artificial Intelligence

8 Min Read

SmartData Collective is one of the largest & trusted community covering technical content about Big Data, BI, Cloud, Analytics, Artificial Intelligence, IoT & more.

ai is improving the safety of cars
From Bolts to Bots: How AI Is Fortifying the Automotive Industry
Artificial Intelligence
AI and chatbots
Chatbots and SEO: How Can Chatbots Improve Your SEO Ranking?
Artificial Intelligence Chatbots Exclusive

Quick Link

  • About
  • Contact
  • Privacy
Follow US
© 2008-26 SmartData Collective. All Rights Reserved.
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?