新浪微博明文发送信息,搜狗输入法收集设备信息

迈克菲实验室称,新浪微博App通过明文HTTP发送消息,用户没有任何隐私,攻击者很容易收集Cookie,或通过中间人攻击修改信息,比如插入恶意链接。利用  Wireshark捕捉流量,用户通过聊天窗口与朋友的聊天记录完全一览无余。迈克菲实验室还发现,搜狗输入法会收集用户插入到电脑上的设备的信息,然后明文HTTP发送出去。

原文:http://www.solidot.org/story?sid=42744

发表评论

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / 更改 )

Twitter picture

You are commenting using your Twitter account. Log Out / 更改 )

Facebook photo

You are commenting using your Facebook account. Log Out / 更改 )

Google+ photo

You are commenting using your Google+ account. Log Out / 更改 )

Connecting to %s