Google engineer Adrienne Porter Felt realized during a flight on Friday that, for Google services and possibly others, Gogo was undermining encryption meant to keep pages secure.
As Neowin first reported, the certificate which was supposed to show that Felt had a secure HTTPS connection to Google.com was raising a red X alert because it wasn’t signed by Google. It was signed by Gogo. Undermining the SSL/TLS protocols meant to encrypt data transmitted to and from a site is called a man-in-the-middle attack, and Gogo carries these out on its own users. The measures could give the company access to lots of user financial data because of the phony certificates.-Slate.comAll must be very careful when using any publicly available WIFI services. All are potential security risk for man-in-the-middle attacks.
AfrocatioN