If you use a WiFi connection anywhere, even if it is encrypted, but otherwise shared among everyone at the coffee shop you’re at, this utility makes it automatic to steal your Free Republic, Amazon, Facebook, etc. login. It doesn’t matter if you logged in using “https” if you are brought back to a “http” screen afterward, as that is what Yahoo Mail and Hotmail even do to you.
In short, you are screwed if you don’t use a VPN. Good luck putting together a cheap, easy VPN for all of your friends.
Partially true. If you log into a site using SSL (HTTPS) and the site reverts to non-SSL after the login, you're at risk. If you're on a banking website, for instance, that offers HTTPS before, during, and after login, you're (relatively) safe. If you're on an unsecured network, your packets can be sniffed, but if the data is encrypted in transit, they can't decrypt it.
WPA2 with SSL is safe; WEP with SSL is not if you leave the SSL session; no wireless security with SSL is insecure; WPA2 without SSL is also insecure. Essentially keep yourself on secure wireless networks and use SSL encryption or VPN to prevent data breaches.
I”m sorry, what is a vpn?