• Skip to primary navigation
  • Skip to main content
  • Skip to footer
  • Home
  • Advertise With Us
  • Contact
  • Cookie Policy
    • Privacy statement (CA)
    • Cookie policy (CA)
    • Privacy statement (UK)
    • Cookie policy (UK)
    • Privacy statement (US)
    • Cookie Policy (US)
    • Privacy statement (EU)
    • Cookie policy (EU)
    • Disclaimer

TechWalls

Technology News | Gadget Reviews | Tutorials

  • Reviews
  • Tech Guide
  • Home Improvement
  • Gadget & Apps
  • News

Instagram users facing risks when connecting through public Wi-Fi

Updated on Jul 30, 2014 by Guest Authors

If you are an Instagram addict and could not resist taking and sharing photos anywhere, including public places where a Wi-Fi connection is available, you should be aware of some risks.

Reports circulated just recently that there is a configuration error in the popular photo sharing app for iOS devices, which enables attackers to seize control of your personal account when you connect to a public wireless network.

Security researcher Stevie Graham first reported on the Instagram configuration issue one year ago and now plans to develop a tool for compromising Instagram accounts if only to call attention to the issue, which he says Facebook keeps neglecting.

instagram

The kinds of attack that could potentially hit Instagram vary on many occasions, but one thing is sure: they will all be extremely damaging because hackers could then hijack a full session by using an automatic software program. This is especially attractive to campaigners of spam messages who can accumulate thousands of Instagram accounts, manipulate them and distribute spams on a huge scale.

It is worth pointing out that this configuration error on Instagram is not anything new to the company and to Facebook, which acquired the company in 2012, as well. In fact, most Internet companies have implemented encryption as way to address many security issues on the Web, including the Instagram configuration issue.

What is new, however, is the discovery of vulnerabilities with such an error. But even that is not surprising. Sure the security community has seen it coming.

Moving the website into an encryption-protected protocol such as the HTTPS is paramount in this situation since Instagram’s application programming interface sends unencrypted requests to its network, where hackers could find loopholes and intrude the communication to execute their malicious intentions.

One method that is popularly known to be effective in carrying out such an attack is man-in-the-middle, in which an attacker can steal session cookies to take control of a certain Instagram account. These cookies could be transmitted by Instagram API calls through the unencrypted ecosystem.

As always, Facebook would refuse to comment on the problem. Although the social networking site has recently transitioned to an encrypted environment, many of its services are still vulnerable to attacks and compromises.

Part of that is the effect of migrating to encryption on the performance of various Instagram features. For one, encryption might slow down a performance. It could also undermine the business of advertising. But Facebook has promised to complete a program that would encrypt its services, including Instagram, without sacrificing performance.

Disclosure: We might earn commission from qualifying purchases. The commission help keep the rest of my content free, so thank you!

Footer

Review of the Waterpik Evolution and Nano Water Flosser Combo Pack

Transparent Shaving: The yoose ICE Electric Shaver Review

INKBIRD IBS-TH5 Review – Smart Thermo Hygrometer with E-Ink Display

LISEN MagSafe CD Phone Holder for Car Review

Follow TechWalls

YoutubeFacebookTwitterInstagram

Recent Posts

  • Review of the Waterpik Evolution and Nano Water Flosser Combo Pack
  • Transparent Shaving: The yoose ICE Electric Shaver Review
  • The Hidden Cost of Cryptocurrency: Bitcoin’s Energy and Water Footprint
  • Free Places To Sleep Inside Hong Kong Airport During Long Transits

Copyright © 2023 · All Rights Reserved

Manage Cookie Consent
We use technologies like cookies to store and/or access device information. We do this to improve browsing experience and to show personalized ads. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional cookies Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
View preferences
{title} {title} {title}