Insolvency and Sidejacking: Difference between pages
From ACT Wiki
(Difference between pages)
imported>Doug Williamson (Add link.) |
imported>Doug Williamson (Create page. Source: The Treasurer, December 2018 / January 2019, p31.) |
||
Line 1: | Line 1: | ||
''Cybersecurity - cyber attacks.'' | |||
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client. | |||
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https. | |||
The session cookie is then used to gain unauthorised access to systems. | |||
==See also== | |||
*[[CEO fraud]] | |||
*[[Cyber attack]] | |||
*[[Cybercrime – A Threat And An Opportunity]] | |||
*[[Cyber security: protecting your business and your clients]] | |||
*[[Cybersecurity]] | |||
*[[DDoS]] | |||
*[[Hotspot sniffing]] | |||
*[[Man in the middle]] | |||
*[[National Cyber Security Centre]] | |||
*[[Social engineering]] | |||
[[Category:Identify_and_assess_risks]] | |||
[[Category:Technology]] | |||
[[Category: | |||
[[Category: |
Revision as of 21:56, 3 February 2019
Cybersecurity - cyber attacks.
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client.
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https.
The session cookie is then used to gain unauthorised access to systems.