The websites of the University of Amsterdam and University of Amsterdam are vulnerable because of SSL certificate and old, making it possible to retrieve credentials. Two students from the HvA have reported this to Folia.
The two students use a Raspberry Pi mini-computer for a derivative to make. the eduroam network This makes it look as if they are connected to the wifi network HvA. The students can leak easily watch when someone logs on the sites, they will retrieve credentials.
According to the students it is very easy to hack the websites. The two students have the vulnerability to the IT department of the UvA and HvA reported, but get no response. Since September this year Students have a tool that allows SSL connections to strip used so you can circumvent antiquated SSL versions
.
No comments:
Post a Comment