Dark Reading

Overcoming the Rising Threat of Session Hijacking

From passkeys to multifactor authentication (MFA), most businesses are embracing solutions that protect sensitive information to minimize their attack surface and enhance cybersecurity posture. While ...
Dark Reading

Heartbleed Attack Targeted Enterprise VPN

Now there's live proof the Heartbleed bug can be exploited, not just to steal private SSL keys stored on a server, but also to retrieve VPN session tokens. Researchers at Mandiant -- now part of ...
Infosecurity-magazine.com

Okta Breach Hit Over 130 Customers

A security breach at identity and access management (IAM) specialist Okta impacted over 130 of its customers, a handful of which suffered follow-on session hijacking attacks as a result, the vendor ...
CRN

Firefox Extension Firesheep Enables Website Hijacking

A Firefox extension boasts that users can hack into someone else's Facebook, Twitter, or Windows Live account by easily hijacking their session over a Wi-Fi network. The extension, known as Firesheep, ...
Computerworld

By the book: How to prevent a dictionary attack

If your Web site (or a portion of it) requires a user to login and be authenticated, then the odds are good that a hacker has tried to break into it. Here’s why: Hackers are well aware that anything ...