LinkedIn called out on slow implementation of default SSL

LinkedIn said it is making progress implementing default encryption of data exchanged with its users after a security company alleged some users are still at risk of account takeovers. San Francisco-based Zimperium, a mobile security company, wrote on its blog on Wednesday that it is still possible to hijack some LinkedIn users account networks using a technique called SSL stripping. The technique involves a man-in-the-middle attack where a hacker is watching a victim s Internet traffic, which is possible in public places such as a coffee shop where the victim is connected to a Wi-Fi hotspot. To read this article in full or to leave a comment, please click here