CJRS and Sidejacking: Difference between pages
From ACT Wiki
(Difference between pages)
imported>Doug Williamson (Remove surplus text.) |
imported>Doug Williamson (Create page. Source: The Treasurer, December 2018 / January 2019, p31.) |
||
| Line 1: | Line 1: | ||
'' | ''Cybersecurity - cyber attacks.'' | ||
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client. | |||
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https. | |||
The session cookie is then used to gain unauthorised access to systems. | |||
== | ==See also== | ||
[ | *[[CEO fraud]] | ||
*[[Cyber attack]] | |||
[ | *[[Cybercrime – A Threat And An Opportunity]] | ||
*[[Cyber security: protecting your business and your clients]] | |||
[ | *[[Cybersecurity]] | ||
*[[DDoS]] | |||
*[[Hotspot sniffing]] | |||
*[[Man in the middle]] | |||
*[[National Cyber Security Centre]] | |||
*[[Social engineering]] | |||
[[Category: | [[Category:Identify_and_assess_risks]] | ||
[[Category: | [[Category:Technology]] | ||
Revision as of 21:56, 3 February 2019
Cybersecurity - cyber attacks.
Sidejacking is a form of cyber attack in which an attacker steals a session cookie from a legitimate website visited by a legitimate client.
These cookies often contain usernames and passwords, and are generally sent back unencrypted, even if the original log-in was protected via https.
The session cookie is then used to gain unauthorised access to systems.
