Documente Academic
Documente Profesional
Documente Cultură
What is Hacking?
Hacking is identifying weakness in computer systems or networks to exploit its weaknesses to
gain access. Example of Hacking: Using password cracking algorithm to gain access to a system
Symbol Description
Secure browsing (https) is a security feature that will encrypt your activity on Facebook where
possible, making it harder for anyone else to access your Facebook information without your
permission.
To change your secure browsing (https) setting:
1. Go to your Security Settings
2. Click on the Secure Browsing section
3. Check the box provided and save your changes
a back up plan.
The best back up plan is a strong email list. If your fans are also subscribers of your email list then
even if something were to happen to your Facebook page or if you wanted to start a new page all
you’d have to do is send an email to your list and let them know about your new page.
11. Don’t Use a Predictable Password
Below are the top 25 most used passwords.
A smart Facebook security tip is to avoid all simple and easy to guess passwords.
So don’t use any of the passwords below, or any other password that could be easily guessed.
Some applications on Facebook are malicious and will compromise your account.
Stay clear of any application which asks you to enter your Facebook username and password (or
your email username and password).
There are phishing applications which collect your account information and compromise your
account. These might look identical to Facebook but actually be a malicious site in disguise.
Whenever a site asks you for your login information check the URL bar of your web browser to
make sure the site is genuine.
The Outcome
Mr. Sima knew where the files were located and was able to sniff the connection and determine that
the ApplicationDetail.htm file set a cookie string. With little manipulation of the URL, Mr. Sima hit
the jackpot. This file returned client information and credit cards when a new customer application
was being processed. CreditReport.htm allowed Mr. Sima to view customer credit report status,
fraud information, declined-application status, and other sensitive information.
The lesson: Hackers can utilize many types of information to break through web applications. The
individual exploits in this case study were minor, but when combined, they resulted in severe
vulnerabilities.
Caleb Sima was a charter member of the X-Force team at Internet Security Systems and was the
first member of the penetration testing team. Mr. Sima went on to co-found SPI Dynamics (later
acquired by HP) and become its CTO, as well as director of SPI Labs, the application-security
research and development group within SPI Dynamics.