New Website Publicly Shames Apps and Services without Encryption

New Website Publicly Shames Apps and Services without Encryption

New Website Publicly Shames Apps and Services without EncryptionAs most of you know, I am a dog mom to Mollie Browne, a Border Collie/Aussie mix that I rescued at 3 months old, and now, I couldn’t imagine my life without her. Because of this, I love all things dog, especially the website Dog Shaming, which is dedicated to showing canines at their “worst” moments in a humorous way. Taking this concept, a new website, HTTP Shaming, aims to publicly shame apps and web services operating without encryption.

Software engineer Tony Webster is the mastermind behind this security shaming site in which he posts cases of insecure communications, naming businesses that send customers’ personal information to the Internet without first encrypting it.

Webster has already identified TripIt, a travel information firm that allows users to bring together ticket, flight times and itinerary information and sync it with other devices and even share it with others. Come to find out, however, this information is not encrypted so hackers could not only get full access to names, phone numbers, email addresses, the last four digits of credit card numbers and emergency contact information but they could also change or cancel victim’s flights.

To date, a total of 19 applications and services have made Webster’s shaming list. Hopefully your favorite is not on this list.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

Featured Cybersecurity

New Products

  • LiftMaster Garage Door Opener

    LiftMaster Garage Door Opener

    LiftMaster Transforms the Garage Door Opener Into a Sleek Smart Home Device That Does More Than Open and Close the Garage Door 3

  • Dinkle DKU Barrier Terminal Blocks

    Dinkle DKU Barrier Terminal Blocks

    New DKU screw type terminal blocks use a spring-guided system where the screws are integrated and captive within the terminal enclosure. These screws can be backed out so that ring- or U-shaped cable lugs can be inserted, without the possibility of losing the screw. 3

  • FlexPower® Global™ Series (FPG) from LifeSafety Power

    FlexPower® Global™ Series (FPG) from LifeSafety Power

    The FlexPower® Global™ Series (FPG) from LifeSafety Power—designed to provide DC power for access control systems in international applications—is now PSE listed for Japan and compatible with the country’s 100VAC applications. 3