spyware/malware preinstalled on some machines -man-in-the-middle on ssl connections

the reuters article is most revealing:


“…Komodia’s website says it produces a “hijacker” that allows users to view data encrypted with SSL technology.


“The hijacker uses Komodia’s redirector platform to allow you easy access to the data and the ability to modify, redirect, block, and record the data without triggering the target browser’s certification warning,” according to the site.


Marc Rogers, a researcher with CloudFlare, said that means companies which deploy Komodia technology can snoop on web traffic.


“These guys can do everything from just collect a little bit of marketing information, all the way to building a profile on you and spying on your banking connections,” he said. “It’s a very dangerous slope.”   …”




see also:




tech info:  http://www.kb.cert.org/vuls/id/529496



Leave a Reply