Insider trading and Sidejacking: Difference between pages
From ACT Wiki
(Difference between pages)
imported>Doug Williamson (Create the page. Source: FT 07 Apr 2016.) |
imported>Doug Williamson (Create page. Source: The Treasurer, December 2018 / January 2019, p31.) |
||
| Line 1: | Line 1: | ||
''Cybersecurity - cyber attacks.'' | |||
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client. | |||
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https. | |||
The session cookie is then used to gain unauthorised access to systems. | |||
== See also == | |||
*[[ | ==See also== | ||
* [[Security]] | *[[CEO fraud]] | ||
* [[ | *[[Cyber attack]] | ||
*[[Cybercrime – A Threat And An Opportunity]] | |||
*[[Cyber security: protecting your business and your clients]] | |||
*[[Cybersecurity]] | |||
*[[DDoS]] | |||
*[[Hotspot sniffing]] | |||
*[[Man in the middle]] | |||
*[[National Cyber Security Centre]] | |||
*[[Social engineering]] | |||
[[Category:Identify_and_assess_risks]] | |||
[[Category:Technology]] | |||
Revision as of 21:56, 3 February 2019
Cybersecurity - cyber attacks.
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client.
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https.
The session cookie is then used to gain unauthorised access to systems.
