Calendar
  • No events
AEC v1.0.4

Cyber Security Info
@Cybersecurityinfo

Some TOR exit relays performing man-in-the-middle attacks on users

January 24, 2014

Share Button

Philipp Winter and Stefan Lindskog from Karlstad University have published a paper revealing that some of the exit relay points of the anonymizing TOR network try to attack the users by man-in-the-middle-attacks using so called SSL stripping technique to change encrypted HTTPS links to normal HTTP ones. Winter and Lindskog have found 25 malfunctioning TOR exit nodes (of about 1000 in total) while 19 of them tried to perform SSL stripping attacks on users accessing the Facebook website. Most of the malicious nodes are located in Russia. This problem affects only users so called clearnet (outside TOR) websites via the TOR network.

Source: The Hacker News

Share Button

Comments