Sound advice (to the extent anything on the internet is really secure ha):
- Change your passwords, and logout of everything
- Do not use open WiFi to login to Facebook, Twitter or anything else
- Use only a hard-wired connection until this subsides
- Do not check the “remember my password” box
A Firefox extension called Firesheep by Eric Butler (full explanation) demonstrates that HTTP cookies are very vulnerable to intercept and splice an attacker right into the sessions. Twitter and Facebook can be grabbed trivially. You can also write your own plugins. It is just an easy front-end user interface for accessing an extremely common vulnerability - and its open source release to the public is intended to show everyone the cookie status quo is hopelessly broken.
You gotta check out the presentation at Toorcon12 http://codebutler.github.com/firesheep/tc12/#1
a bit of background here http://t3chh3lp.com/blog/firesheep-allows-you-to-hack-into-facebook-twitter-accounts.html
http://browserland.com/how-to/how-to-install-xpi-and-jar-firefox-add-ons-and-themes/
And let's consider this 4chan thread of political dogs - sez it all http://i.imgur.com/Vdk6D.jpg?ref=nf
