1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Side Jacking

Discussion in 'CycleChat Cafe' started by Keith Oates, 8 Feb 2008.

  1. Keith Oates

    Keith Oates Janner

    Location:
    Penarth, Wales
    What is it!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
     
  2. got-to-get-fit

    got-to-get-fit New Member

    Location:
    Yarm, Cleveland
    something to do with hacking in to peoples e-mail accounts .....its all a bit too I.T. and techy for me.

    Either that or its some new dance phenomenom that the youf are into
     
  3. Keith Oates

    Keith Oates Janner

    Location:
    Penarth, Wales
    gtgf, your right about the IT angle but I wondered what the precise description is all about!!!!!!!!!!!!!!!!!!!!!
     
  4. TheDoctor

    TheDoctor Man-Machine Staff Member

    Location:
    Stevenage
    Here you go - source is http://www.webopedia.com/TERM/S/SideJacking.html

    Term used to describe the malicious act of hijacking an engaged Web session with a remote service by intercepting and using the credentials that identified the user/victim to that specific server. Typically, SideJacking is most common on sites that require authentication through a username and password, such as online Web mail accounts as well as social networking sites. SideJacking works only if the site catches a non-SSL cookie, so any Web site that uses SSL exclusively would be safe from SideJackers. SideJacking was first demonstrated by Robert Graham, CEO of Errata Security at Black Hat in 2007.

    As ever, Google is your friend;) Unless you're in China, maybe.
     
  5. yorkshiregoth

    yorkshiregoth Master of all he surveys

    Location:
    Heathrow
    Term used to describe the malicious act of hijacking an engaged Web session with a remote service by intercepting and using the credentials that identified the user/victim to that specific server. Typically, SideJacking is most common on sites that require authentication through a username and password, such as online Web mail accounts as well as social networking sites. SideJacking works only if the site catches a non-SSL cookie, so any Web site that uses SSL exclusively would be safe from SideJackers. SideJacking was first demonstrated by Robert Graham, CEO of Errata Security at Black Hat in 2007.

    It also involves Ferrets & Hamsters (software) and is usually done whilst using wi-fi in public hotspots such as Megabucks coffee shops etc.
     
  6. Keith Oates

    Keith Oates Janner

    Location:
    Penarth, Wales
    You live and learn, thanks all!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!