All tricks in this blog are only for educational purpose. Learn these tricks only for your knowledge. Please donot try these to harm any one. We will not take any responsibility in any case. All softwares and tools on this site are here for private purposes only and If you want to use a software for business purpose, please purchase it. I do not host many of these tools. I Post links that I have found from numerous Search engines. I will not be responsible for any of harm you will do by using these tools.


Sunday, November 13, 2011

How to get protect against cookies stealing & High-jacking

Some days ago, a security researcher found a Microsoft’s latest security risk named cookies Hi-Jacking & Session Hi -Jacking which allows cookie stealing.

Microsoft is doing all it’s research to patch this vulnerability of internet explore. This bug is in all versions of internet explorer.

Cookies Hi – jacking and social engineering techniques are then used to trick users into dragging the contents of the rogue iframes to containers on the same page controlled by the attackers.
Microsoft’s Brandon LeBlanc say that the company is working on a patch. He also suggested to use  browser’s InPrivate Browsing feature.

The private browsing mode prevents access to cookie files already saved on the disk, but more importantly, it stores cookies for the active session in memory.

This means that a page crafted for cookies HI- jacking cannot access neither older cookies nor active ones, because there is no path to them.

VIA : kyrionhackingtutorials