2 comments

[ 3.9 ms ] story [ 16.9 ms ] thread
The ultimate sidejacking opportunity, other unencrypted data notwithstanding. Sites with a proper SSL implementation seem more attractive each day.
If you combine BGP hijacking with your own CA (e.g. CNNIC), you can even hijack SSL sites.