What is Account Hijacking?

Account hijacking is a fraudulent action that aims to take over a user’s account on an application to access their information, publish content in their name or commit fraud.

Phishing, malware and the use of weak passwords are some of the main attack vectors used to commit this fraud.

The OWASP security methodology identifies account hijacking as one of the main controls to evaluate in applications. Using two-factor authentication often helps to contain this type of attack.

We are using cookies to give you the best experience on our website. You can find out more about which cookies we are using or switch them off in Cookies Settings

Necessary

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

Necessary cookies

3rd Party Cookies

This website uses Google Analytics to collect anonymous information such as the number of visitors to the site, and the most popular pages. Keeping this cookie enabled helps us to improve our website.

3rd party cookies

Cookies policy