Android app to hack Facebook account

E

Elimentals

Honorary Master
Joined
Dec 11, 2010
Messages
10,819
Reaction score
15
Location
PE
FaceNiff makes Facebook hacking a portable, one-tap affair

http://www.engadget.com/2011/06/02/faceniff-makes-facebook-hacking-a-portable-one-tap-affair-vide/

Remember Firesheep? Well, the cookie snatching Firefox extension now has a more portable cousin called FaceNiff. This Android app listens in on WiFi networks (even ones encrypted with WEP, WPA, or WPA2) and lets you hop on to the accounts of anyone sharing the wireless connection with you. Right now it works with Facebook, Twitter, YouTube, and Nasza-Klasa (a Polish Facebook clone), but developer Bartosz Ponurkiewicz promises more are coming. You'll need to be rooted to run FaceNiff -- luckily, we had such a device laying around and gave the tap-to-hack app a try. Within 30 seconds it identified the Facebook account we had open on our laptop and had us posting updates from the phone. At least with Firesheep you had to sit down and open up a laptop, now you can hijack Twitter profiles as you stroll by Starbucks and it'll just look like you're sending a text message (but you wouldn't do that... would you?). One more image and a video are after the break.
Click to expand...

Another reason to root, get into someones life.

Link to app: http://faceniff.ponury.net/
 
Last edited:
HOLY COW!!!!

it works like a dream....

Think I need to go play at the local coffee shop <evil grin>
 
PS: I am not that type of person, but at least now I know to stay the hell away from Facebook and twitter when I am at the Coffee shops.
 
Well, from the source of where you get the app wouldn't it be dodgy to load the app?
 
phoneJunky said:
Well, from the source of where you get the app wouldn't it be dodgy to load the app?
Click to expand...

That is why I have a test phone (Old Desire on pre-pay on a separate Gmail account), to play with this type of apps and not worry about malware.
 
Elimentals said:
That is why I have a test phone (Old Desire on pre-pay on a separate Gmail account), to play with this type of apps and not worry about malware.
Click to expand...

Thats smart, but I don't have a test phone and I really want this app, just to freak people out.
 
phoneJunky said:
Thats smart, but I don't have a test phone and I really want this app, just to freak people out.
Click to expand...

Well so far traces didn't send any data (Linux firewall showing outbound connections)
Will de-compile it to check before I will give the go-ahead.

Edit, it looks very clean, besides the developers full name and phone number + Skype details are on the site.
Also his CV and personal info

I would say go play :)
 
Last edited:
Gonna give it a spin. First let me delete those credit card details.... Kidding

Sent from my HTC Desire using MyBroadband Android App
 
Yep its clean.

Should have actually moved this post under news and let the public know about it, well more let them know that using things like Facebook and twitter on public WiFi is a very bad idea.
 
Last edited:
Facebook uses encryption as standard now doesn't it? Think you'll have a hard time finding victims now.
Oh well, downloaded it. Maybe I'll try logging into a random account when I'm out.
 
Maddmatt said:
Facebook uses encryption as standard now doesn't it? Think you'll have a hard time finding victims now.
Oh well, downloaded it. Maybe I'll try logging into a random account when I'm out.
Click to expand...

Facebook still defaults to http, anyway the moment it sends any data via http you have the key and can enter..... busy playing with the code. It doesnt wait for the logon screen to work, so even "remember me" accounts work.
Can even get it to grab mybroadband account if you using the browser.

Please note if you using any applications like iPhone or Android dedicated apps this hack does not work.
 
Last edited:
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X