Are We Ever Really Safe On The Internet?

More and more cracks in security make it insecure.

It seems that just about every day, we hear abut some company or web site being hacked. It makes one wonder if there is any real security available to the masses when surfing the Web. There are many who talk about a browser or operating system which is more secure than another, but it looks to be a matter of time before hackers are able to break through what ever line of defense has been created. And it is that breaking down of the walls of defense which should concern everyone. Once hackers have been able to do that, it is a mad scramble to patch the hole which has been created in order to return to a secure environment.

The most recent report concerns the use of HTTPS as a means to adding another layer of security when you are using the internet. If you remember back to early last year, there was a Firefox plugin called FireSheep which allowed you to tap into what people were doing on a public WiFi and take over their session. You could then change their password for Facebook if they were currently connected to that. This worked as long as their were connecting via HTTP and not the more secure HTTPS. Gmail, FireFox and many others finally made HTTPS the default connection to stop this hijacking and protect users.

Well, it now seems that HTTPS may not be that safe as well. Researches have found a way to hijack an HTTPS session from a user. And with that ability, it is going to result in a scramble to make corrections to lock this down. This is a big concern as it is evidence of another breakage in the Web security which we have taken for granted. There is no perfect security on the Web, though some seem to believe that we are protected on the Web and do not have to worry. In reality, security experts pretty much all agree that there is no ultimate security. It is just that hackers have not figured out a way to get in. It does not matter whether it is the Web, a computer or a network, at some point they will be able to gain access.

Companies continually try and stay one step ahead of those trying to gain access, but the attempts to stay ahead are expensive and time consuming. And not all companies and organizations are able to do all this work. Even those that are still get hacked. So, the reality is that we are not completely safe on the Web. The key for every individual is to try and keep your software current. Part of that is to maintain your browser so that it is current and to minimize the use of plugins.

Be cautious when browsing the web as there are sites which do "drive by" infections to put viruses on your computer. On these sites, just going to the site will cause a virus to be placed on your computer. Do not install anything from the web that you are not sure about. It is part of the normal common sense which should be exercised. And this applies to the growing mobile devices which are replacing desktop browsing. Your smart phone and tablet can be infected as well.

You must be alert to all those who want to gain control of your technology. Just using common sense is probably your best tool for staying safe.

Reuters' Blog Hacked Again This Week

WordPress Blog hacked again because it is not current WordPress version.

Reuters Blog has been hacked again this week, mainly because they are running an out of date version of WordPress. And with the hacking of their blog, false news reports have been added to the blog site at Reuters. This is not exactly something that you want to see for your business and to have it happen in two separate weeks is not exactly the best of news. Others are reporting on this and at the moment, their Blog Site is experiencing difficulties. You see the picture above and then you are taken to the main news site at that point. Guess they finally decided to take the site down until they can fix it.

Reuters is even producing a news story about the hacking of their blog site and indicating they did not post the false story. In that story, it was reported that "Saudi Arabia's Foreign Minister Prince Saud al-Faisal had died". That is obviously a false report and one that has created problems for Reuters.

"Reuters did not report the false story and the post was immediately deleted. We are working to address the problem," Barb Burg, director of global communications at Reuters News, said in a statement.

Others are saying this is serious as it is the Third time is two weeks that Reuters has been hacked and bogus information reported. That is not good news for the credibility of the blog site and the news agency. While Reuters is quick to blame others as the hackers of their WordPress site, they need to correct this situation.

As we reported last week, Reuters needs to update the WordPress software to correct this security hole that they have. We had indicated that they were vulnerable to be hacked again if they did not, and that is exactly what has happened. Exactly when they are going to address this has not been stated.

Given that the site is currently unavailable, one could guess they are working to upgrade the Wordpress software from version 3.1.1 to version 3.4.1. Reuters needs to fix this now. One more hacking like this and they will lose much of their credibility. I would hate to be working in the IT department over there and having to scramble to fix this problem.