Web Application Penetration Testing Tutorial For Beginners

What is Session Hijacking Attack in Cyber Security? Meaning & Definition

What is Session Hijacking Attack?

Session hijacking happens when an attacker hacks the session of a user by obtaining the authentication. 

For instance, someone has logged into his bank account on the bank website. The session starts once he is logged in, and it ends when logged out. The method of taking over a session is called session hijacking.

Testing for Session Hijacking Vulnerability

In case the attackers hijack a session, they can perform several activities that are supposed to be done only by an authorized user. They can do so as long as the session is active. For instance, if a user is logging in to his bank account, the attackers can use this hijacked session for money transfer, shopping things online, and more.

Session Hjacking

Session Hjacking

Test your knowledge with a quick quiz!

The most commonly used session hijacking attack is the _____________

Select the correct answer

PreviousWhat is Cross-Origin Resource Sharing (CORS) Vulnerability in Web API?
NextWhat is Denial of Service Attack? DoS Attack and Its Types
Did you find this article helpful?