SideJacking Last modified: Friday, August 31, 2007
Term used to describe the malicious act of hijacking an engaged Web session with a remote service by intercepting and using the credentials that identified the user/victim to that specific server. Typically, SideJacking is most common on sites that require authentication through a username and password, such as online Web mail accounts as well as social networking sites. SideJacking works only if the site catches a non-SSL cookie, so any Web site that uses SSL exclusively would be safe from SideJackers. SideJacking was first demonstrated by Robert Graham, CEO of Errata Security at Black Hat in 2007.
•E-mail this definition to a colleague• For internet.com pages about SideJacking . Also check out the following links! Sidejack Attack Jimmies Open Gmail, Other Services  Sidejacking doesn't require that a cracker gain remote access to your computer, nor does having session information sidejacked necessarily make your computer more vulnerable. Errata Security Blog Errata Security is a consulting and product testing company specializing in cybersecurity Sidejacking session information over WiFi easy as pie Using a basic packet sniffer over a WiFi network and a proxy server to pass the information through, a determined hacker can easily sidejack the session information as his own by stealing session IDs straight out of the WiFi signal.	Ethics Security Wireless Computing cookie session cookie session hijacking sniffer wardriving Wi-Fi Give Us Your Feedback Shopping side Jacking Products Compare Products,Prices and Stores Shop by Category: Sport and Outdoor 239 Store Offers Clothing 334 Store Offers