Firesheep killer BlackSheep launched

Firesheep has a new foe in the form of BlackSheep, which alerts the user when their Web 2.0 sessions have been hijacked.

Black Sheep

A Firefox plugin has been made available to protect against web snoopers using a different add-on to hijack social networking sessions.

Zscaler has launched BlackSheep and it is currently the only bespoke service designed to fight the Firesheep threat, which emerged last month.

Firesheep was created in October and was made public by developer Eric Butler at the Toorcon security conference.

Advertisement - Article continues below

The tool was designed to exploit weak transaction security on social network applications, such as Facebook and Twitter, and was downloaded over 100,000 times in the first 24 hours following its launch.

"While session hijacking is not a new form of attack, Firesheep has garnered considerable attention due to the fact that it makes session hijacking exponentially easier and can bring this capability to the masses," said Michael Sutton, vice president of security research at Zscaler.

BlackSheep helps fend off hackers by displaying a warning when Firesheep is detected. Zscaler has recommended users logout of the social service they are using as soon as an alert is raised and stop using the network.

"BlackSheep leverages much of the Firesheep code, but the twist is that rather than being used to hijack sessions, it instead detects when a session is being hijacked and alerts the user," explained Julien Sobrier, senior researcher at Zscaler Labs and developer of the new BlackSheep plugin.

Advertisement
Advertisement - Article continues below

"We essentially used Firesheep against itself to combat the threat it poses."

The product is free and can be downloaded now.

Featured Resources

Staying ahead of the game in the world of data

Create successful marketing campaigns by understanding your customers better

Download now

Remote working 2020: Advantages and challenges

Discover how to overcome remote working challenges

Download now

Keep your data available with snapshot technology

Synology’s solution to your data protection problem

Download now

After the lockdown - reinventing the way your business works

Your guide to ensuring business continuity, no matter the crisis

Download now
Advertisement

Recommended

Andrew Daniels joins Druva as CIO and CISO
Cloud

Andrew Daniels joins Druva as CIO and CISO

22 Jul 2020
University of California gets fleeced by hackers for $1.14 million
ransomware

University of California gets fleeced by hackers for $1.14 million

30 Jun 2020
Australia announces $1.35 billion investment in cyber security
cyber security

Australia announces $1.35 billion investment in cyber security

30 Jun 2020
CSA and ISSA form cyber security partnership
cloud security

CSA and ISSA form cyber security partnership

30 Jun 2020

Most Popular

How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

3 Aug 2020
Labour Party donors caught up in Blackbaud data breach
data breaches

Labour Party donors caught up in Blackbaud data breach

31 Jul 2020
How do you build a great customer experience?
Sponsored

How do you build a great customer experience?

20 Jul 2020