Home Page Navigation Contents Contact Sitemap Search

Ses­sion Riding

Con­trary to phishing and pharming, ses­sion riding does not con­sti­tute a Man-in-the-Middle attack. Instead of diverting log-in infor­ma­tion via an attacker, with ses­sion riding, any com­mu­ni­ca­tion with a finan­cial insti­tu­tion is manip­u­lated straight on the victim’s device. To manip­u­late com­mu­ni­ca­tions this way, mal­ware which has infected a user’s device is to blame.