tag:blogger.com,1999:blog-7429675726481888518.post5594223298567881867..comments2024-03-13T12:31:03.763+01:00Comments on Jump ESP, jump!: Mythbusters: Is an open (unencrypted) WiFi more dangerous than a WPA2-PSK? Actually, it is not.Zhttp://www.blogger.com/profile/12373001166765443215noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-7429675726481888518.post-85359219939654729152015-09-26T19:28:44.036+02:002015-09-26T19:28:44.036+02:00A few dollars a month on a VPN avoids all this ris...A few dollars a month on a VPN avoids all this risk. <br /><br />That's a top tip about having two networks.Nigelhttps://www.blogger.com/profile/16570349252948836345noreply@blogger.comtag:blogger.com,1999:blog-7429675726481888518.post-75576832119342300732015-07-23T17:31:01.448+02:002015-07-23T17:31:01.448+02:00Besides sniffing unencrypted HTTP, POP3, IMAP traf...Besides sniffing unencrypted HTTP, POP3, IMAP traffic, there is another angle here. If the connecting device is a smartphone/tablet, chances that one of the apps is transmitting sensitive data in clear text are considerate:<br />http://www.zdnet.com/article/espns-scorecenter-for-ios-sends-passwords-in-clear-text-susceptible-to-xss-flaw/<br />http://www.cnet.com/news/researchers-find-data-leaks-in-instagram-grindr-oovoo-and-more/<br />http://blog.checkpoint.com/2015/02/03/cyberthieves-can-score-data-touchdown-unencrypted-apps/<br />https://www.communications.gov.au/what-we-do/internet/stay-smart-online/alert-service/tumblr-ios-app-sending-unencrypted-passwords<br /><br />So it is not just website owners who should employ encryption, but mobile app developers too should encrypt their traffic between the app and their APIs.Gabor Szathmarihttps://www.blogger.com/profile/00500069442459106886noreply@blogger.com