• +
Finally Twitter Turns Secure Connections on by Default

Finally Twitter Turns Secure Connections on by Default

Bookmark

Twitter has begun enabling SSL-secured connections as the default method for users to connect to the microblogging service.

The company said that it has begun configuring the feature as a default setting for some of its users, allowing users to always sign in to the service by way of an HTTPS connection.

SSL secured connections encrypt traffic before data is sent between the client device and the server. Because data travels as encrypted packets, information such as log-in credentials cannot be harvested by intercepting traffic.

The use of secured connections are particularly important when users are running on unsecured wireless networks and public hot spots, where an attacker could easily intercept traffic and harvest account credentials.

finally twitter turn secure connection on by default

“Unfortunately, if you log into Twitter over unencrypted Wi-Fi, e.g. at a coffee shop or an airport lounge and you don’t have HTTPS enabled, then a hacker could sniff your session cookie,” Sophos senior technology consultant Graham Cluley said in a blog post.

“And anyone who can sniff your session cookie can pretend to be you.”

Users who do not yet have HTTPS enabled by default can still turn on the secured connections option by selecting the “always use HTTPS” option under the Twitter account settings page.

Read more : v3.co.uk

Share this article if you found this post was useful:

Blogger at hacking-tutorial.com. Love PHP, offensive security and web. Contact him at me[-at-]vishnuvalentino.com

See all posts by || Visit Website : http://www.vishnuvalentino.com

  • Hi all,
    I am in desperate need for help. Someone used my wife’s photo as his/her profile photo and name.
    I contacted twitter security 4 days ago and attached her government-issued photo id in a silly form they sent me to fill up. I did so and sent back the filled form. Since then i never heard from them. Please advice, i want to get this account suspended at any cost.
    Thank you