Home / malware HackTool:JS/Firesheep
First posted on 21 February 2019.
Source: MicrosoftAliases :
There are no other names known for HackTool:JS/Firesheep.
Explanation :
HackTool:JS/Firesheep is Microsoft's detection for components of a hacking tool known as Firesheep. The tool is used as a plugin for the web browser Firefox to hijack user sessions within an unsecure network such as a public Wi-Fi hotspot or access point. InstallationFiresheep is open-source and currently supports the Windows and Mac operating systems. The tool is packaged as a Firefox plugin, and can be accessed as a sidebar. Once installed, the components may be present as the following files: ff-sidebar.js Firesheep.js Firesheep allows the user to enumerate other users across an unencrypted network connection such as a public Wi-Fi hotspot or access point, and potentially hijack that user's session for sites such as Twitter, Gowalla, Amazon, Flickr, Yahoo and Facebook, among others. The tool uses a security vulnerability known as "HTTP Session Hijacking" (aka "Cookie Hijacking"). An attacker could use the tool to impersonate another logged on user. Analysis by Rex Plantado
Last update 21 February 2019