Shoutbox

Well, to shorten up the story :

quote:

---

Originally posted by Zdnet Blog

Robert Graham (CEO Errata Security) gave his Web 2.0 hijacking presentation to a packed audience at Black Hat 2007 today. The audience erupted with applause and laughter when Graham used his tools to hijack someone’s Gmail account during an unscripted demo. The victim in this case was using a typical unprotected Wi-Fi Hotspot and his Gmail account just popped on the large projection screen for 500 or so audience members to see. Of course had the poor chap read my blog about email security last week he might have avoided this embarrassment. But for the vast majority of people using Gmail or any other browser or “Web 2.0″ application, they’re all just a bunch of sheep waiting to be jacked by Graham’s latest exploit.

---

Full stories and how-to :
http://blogs.zdnet.com/Ou/?p=651

By the way, what do you guys think of this?
It seems that it isn't only Gmail, but online applications with cookies? Is that correct?