Wireless Vocabulary
TA B L E – Common wireless terms
Krishna
Wireless Standards in Use
Not all wireless standards are the same, and you should become familiar with the differences and similarities of each. TA B L E Wireless standards So why all the different letters in the 802.11 family? Well, the short answer is that the additional letters correspond to the working groups that came up with the modifications … Read more
Wi-Fi
Wireless networks, or Wi-Fi, fall into the range of technologies covered under the IEEE 802.11 standard. The technology has been adapted for use by everything from laptops and personal computers to smartphones and videogame consoles. Through the use of wireless technology, users can connect to the Internet and share resources in ways that weren’t possible … Read more
Cloud services see exponential growth
Covid 19 has changed the cyber-security threat landscape of the country. This has accelerated the usage of cloud. Companies are going beyond just legacy IT operations. They are going that extra mile to build overall resilience, besides factoring digital trust into the system Cloud security is important than anything else now and it has to … Read more
Exploring Defensive Strategies
Session hijacking relies, in part, on many of the prerequisites needed to successfully sniff a network. For instance, session hijacking attacks increase in complexity for external and switched networks. In other words, sitting on the local LAN (for example, as a disgruntled employee) is a much better strategic position for an attack than sitting outside … Read more
Network Session Hijacking
Network-level session hijacking is a hijacking method that focuses on exploiting a TCP/IP connection after initialization or authentication has occurred. There are some specific hijacking techniques that are in this category of attack. Some common ones we will discuss are TCP/IP hijacking, man-in-the-middle attacks, and UDP session hijacking. TCP/IP Session Hijacking TCP/IP session hijacking is … Read more
Session Hijacking and Web Apps
Session hijacking at the application level focuses on gaining access to a host by obtaining legitimate session IDs from the victim. Essentially, a session ID is an identifier that is applied to a user’s session that allows the server or web resource to identify the “conversation” it is having with the client. So, for example, … Read more
Active and Passive Attacks
You can categorize a session hijacking attack as either an active attack or a passive attack. Let’s look at both. Active Attack A session hijacking attack is considered active when the attacker assumes the session as their own, thereby taking over the legitimate client’s connection to the resource. In an active attack the attacker is … Read more
Spoofing vs. Hijacking
you should know that spoofing and hijacking are two distinctly different acts. Spoofing is when an attacking party pretends to be something or someone else, such as a user or computer. The attacker does not take over any session. In hijacking, the attacker takes over an existing active session. In this process, the attacker waits … Read more
Session Hijacking
Session hijacking is synonymous with a stolen session, in which an attacker intercepts and takes over a legitimately established session between a user and a host. The user-host relationship can apply to access of any authenticated resource, such as a web server, Telnet session, or other TCP-based connection. Attackers place themselves between the user and … Read more