A new internet vulnerability has been exposed, and it could well affect users of public wi-fi here.
Last Thursday, the Singapore Computer Emergency Response Team (SingCERT) reported the discovery of POODLE — Padding Oracle On Downgraded Legacy Encryption — where attackers can exploit the vulnerability of the outdated encryption protocol SSLv3 to obtain users’ cookies and compromise their accounts.
Popular internet browsers Google Chrome, Mozilla Firefox and Internet Explorer are all affected by POODLE, and users are advised to update their browsers to the latest version to avoid being exploited.
According to the Straits Times, potential damage is severe as sensitive information such as bank transactions and even emails can be hijacked without needing passwords. Reportedly, hackers have to be using the same wi-fi network as their victims, meaning it’ll mainly affect users of public networks in the various cafes, restaurants and other establishments here.
The public are advised to avoid making sensitive transactions over public Wi-Fi networks for now, or at least until browser makers have disabled support for SSLv3 with new versions.
Photo: Lowercase Cafe Facebook Page
Read Also:
Interpol's first digital crime centre will be housed in Singapore headquarters
Cybercriminals are targeting Singaporeans, here are 4 ways to stay safe
A new internet vulnerability has been exposed, and it could well affect users of public wi-fi here.
Last Thursday, the Singapore Computer Emergency Response Team (SingCERT) reported the discovery of POODLE — Padding Oracle On Downgraded Legacy Encryption — where attackers can exploit the vulnerability of the outdated encryption protocol SSLv3 to obtain users’ cookies and compromise their accounts.
Popular internet browsers Google Chrome, Mozilla Firefox and Internet Explorer are all affected by POODLE, and users are advised to update their browsers to the latest version to avoid being exploited.
According to the Straits Times, potential damage is severe as sensitive information such as bank transactions and even emails can be hijacked without needing passwords. Reportedly, hackers have to be using the same wi-fi network as their victims, meaning it’ll mainly affect users of public networks in the various cafes, restaurants and other establishments here.
The public are advised to avoid making sensitive transactions over public Wi-Fi networks for now, or at least until browser makers have disabled support for SSLv3 with new versions.
Photo: Lowercase Cafe Facebook Page
Read Also:
Interpol's first digital crime centre will be housed in Singapore headquarters
Cybercriminals are targeting Singaporeans, here are 4 ways to stay safe