HOW TO Hack Facebook & Protect Yourself

How To Hack Into Facebook (using session hijacking)

Back in October, a little innocent Firefox plugin was released called Firesheep. This plugin was released to make it public that stealing your account on Facebook can be as easy as stealing candy from a baby.

Websites like Facebook, Twitter and many others send user information, usernames and even passwords over an insecure HTTP connection utilizing cookies on users’ computers. If anyone was able to get their hands on that cookie, they would be able to “impersonate” you on that website. That is exactly what Firesheep allows you to do.

It Is That Simple!

Whenever anyone logs on to Facebook, or any other recognized website, using the same hotspot, the plugin will be able to capture that user’s cookie and allow you – with a click of a button – to masquerade as him/her on that website. It is understandable the mess that this plugin create and I can’t even imagine the number of pranks that have been played on college campuses using Firesheep, but it was the best way to illustrate the vulnerability to the mainstream. To get Firesheep you can download it here.

How To Protect Yourself

While it took Facebook close to four months to secure their website, they have finally done it. But the catch is that it’s an opt-in service, and you will have to probably jump through the same hoops, that you should be used to by now, to make your Facebook account more secure.

Secure Connection Setting on Facebook

To enable the service, you will have to go to your Account Settings–> Account Security –> and check the “Browse Facebook on a secure connection (https) whenever possible to resolve this vulnerability. This feature is not yet rolled out to all Facebook accounts so if you don’t see it in your account security, you should keep on checking for it. In case you are thinking about ignoring this issue as just another security scare from the geeks, I implore you to install Firesheep, sit in a cafe, and see how many accounts you’ll be able to hijack.

Interestingly enough this feature was first rolled out to Facebook users in Tunisia because the government was hijacking their accounts, so that solidarity shows that someone at Facebook is still a rebel at heart.

Comments and Reactions

8 responses to “HOW TO Hack Facebook & Protect Yourself”

  1. Amer Kawar says:

    Great tip. Google Mail has https too now. Gives you piece of mind to know that all is functioning SSL.

  2. Beiruta says:

    I never knew all this! The thing is, I am too lazy to do all the steps :S

  3. dont make facebook more secure, but instead rather make your emails and messages more secure – now even for free: with

    have fun!

  4. Shaijal1 says:

    Hack Facebook profile and private photos

  5. guest says:

    i downloaded the firesheep but in WinRAR they wouldn’t let me run it its like stuff in WinRAR.  can you help me??

  6. shaijal ek says:

    ★♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥★Facebook Remote Login – Hack Facebook accounts in 5 Minutes hack, hack facebook account for free, hack facebook account free, hack Facebook account information, hack facebook account online, hacking Facebook Account passwords, to hack facebook account

  7. shaijal ek says:

    ★♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥★Facebook Remote Login – Hack Facebook accounts in 5 Minutes

  8. shaijal ek says:

    ★♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥♥★Facebook Remote Login – Hack Facebook accounts in 5 Minutes

©2010 thoughtpick, copyrights reserved.