Sunday, January 15, 2006

Blogger Hijacks

The mostly likely reason that someone has had their blog hijacked is the use of a poor password and username. If your blog is named sexkitten99’s blog, you really don’t want your username to be sexkitten99. Obvious passwords would be bad as well, if it’s a blog about sex, orgasm would be a bad password. If it’s a political blog, pundit would be a bad password. If your initials are Elf, santa or keebler would be right out as passwords.

The other way someone could steal a username and password, albeit less likely, would be thru the use of a packet-sniffer. A packet-sniffer is a program that picks up all packets off of the network cable you are attached to. You can then sort thru the packets and see the data within the packets.

If the data isn’t encrypted it is possible to find usernames and passwords in the data.

In order to get blogger usernames and password, someone would have to be on an Internet artery that blogger is also on. Your average Joe isn’t going to have access to traffic going to blogger.

In any case, I’ve already sent a suggestion to blogger about getting the login pages encrypted using a certificate system like you would use for credit card transactions (SSL). This would make it harder for the hackers to get the information since it’s encrypted.

In most cases, lacking password and username security is to blame for internet hacks.

0 Comments:

Post a Comment

<< Home