Google Chrome will have a new feature for MITM attacks

  • 266
  •  
  •  
  •  
  • 1
  •  
  •  
  •  
    267
    Shares

A new security feature will be added to Google Chrome that will recognize when third-party software is making man in the middle attack (MITM).

Google Chrome will display a new warning page, which means that the browser has detected known software on the computer or network that can perform a man-in-the-middle (MITM) attack.

“In cryptography and computer security, a man-in-the-middle attack (MITM) is an attack where the attacker secretly relays and possibly alters the communication between two parties who believe they are directly communicating with each other.”

The hardest section when dealing with encrypted HTTPS traffic is that most MITM tools fail to accurately rewrite the victim’s encrypted connections, causing SSL errors that Chrome will detect.

Most data are now encrypted with HTTPS, there is already a big hurdle for man-in-the-middle attacks, but they are for sure possible through fake page certificates. And now, Chrome 63 is used, attempting to notify the user better when such things are detected – for example by changing firewall or antivirus software.

If you want to try out the new feature, double click on the Chrome Canary icon/shortcut, then select Properties from the menu and in the “Target” field add the following “–enable-features=MITMSoftwareInterstitial” then click save.

 

The following two tabs change content below.

William Fieldhouse

I currently work full time as a penetration tester and have been involved within the IT security industry for over a decade. I also love to pioneer any forms of new technology and ideologies for future advancements. Feel free to contact me at [email protected]

William Fieldhouse

I currently work full time as a penetration tester and have been involved within the IT security industry for over a decade. I also love to pioneer any forms of new technology and ideologies for future advancements. Feel free to contact me at [email protected]

Leave a Reply