Neowin

Linus Tech Tips' YouTube channels were hacked due to a session hijacking attack

A session hijacking attack normally happens when a threat actor gains access to a victim's online accounts by stealing their session cookies, eliminating the need to capture login credentials or go ...
Infosecurity-magazine.com

Tackling the Emerging Threat of Session Hijacking and MFA Bypass

When it comes to enterprise cyber-threats, credentials are rightly viewed as the keys to the kingdom. Why use a piece of malicious code on a vulnerable system or human when a valid credential opens ...
Dark Reading

Overcoming the Rising Threat of Session Hijacking

From passkeys to multifactor authentication (MFA), most businesses are embracing solutions that protect sensitive information to minimize their attack surface and enhance cybersecurity posture. While ...
ZDNet

Slack fixes vulnerability exploitable for session hijacking, account takeovers

This form of attack tampers with the processes sequences of HTTP requests within a website or app, generally when front-facing services send an HTTP request to a back-end server, and any disparity ...
Dark Reading

Many ZTNA, MFA Tools Offer Little Protection Against Cookie Session Hijacking Attacks

Many of the tools that organizations are deploying to isolate Internet traffic from the internal network — such as multifactor authentication, zero-trust network access, SSO, and identity provider ...
CSOonline

Use the internet? This Linux flaw could open you up to attack

A flaw in the Transmission Control Protocol (TCP) used by Linux since late 2012 poses a serious threat to internet users, whether or not they use Linux directly. That’s the key finding of a research ...