{"id":6518,"date":"2021-04-01T14:12:19","date_gmt":"2021-04-01T12:12:19","guid":{"rendered":"https:\/\/tekmart.co.za\/t-blog\/?p=6518"},"modified":"2021-04-01T14:12:41","modified_gmt":"2021-04-01T12:12:41","slug":"man-in-the-middle-attack-mitm-a-tech-definition","status":"publish","type":"post","link":"https:\/\/tekmart.co.za\/t-blog\/man-in-the-middle-attack-mitm-a-tech-definition\/","title":{"rendered":"man-in-the-middle attack (MitM)-a tech definition"},"content":{"rendered":"Reading Time-approximately:<\/span> 2<\/span> minutes<\/span><\/span>\n

A man-in-the-middle (MiTM) attack is one in which the attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other.\u00a0The attack is a type of eavesdropping in which the entire conversation is controlled by the attacker.<\/strong><\/h2>\n\n\n\n

Courtesy Post By TechTarget Contributor<\/a><\/p>\n\n\n\n

Sometimes referred to as a session\u00a0hijacking attack, MiTM has a strong chance of success when\u00a0the attacker can impersonate each party to the satisfaction of the other.\u00a0<\/p><\/blockquote><\/figure>\n\n\n\n

MiTM attacks pose a serious threat to online security because they give the attacker the ability to capture and manipulate sensitive information in real-time.<\/p>\n\n\n\n

A common method of executing a MiTM attack involves distributing\u00a0malware\u00a0that provides the attacker with access to a user\u2019s Web browser and the data it sends and receives during transactions and conversations. Once the attacker has control, he can redirect users to a fake site that looks like the site the user is expecting to reach. <\/p>\n\n\n\n

The attacker can then create a connection to the real site and act as a proxy in order to read, insert and modify the traffic between the user and the legitimate site. Online banking and e-commerce sites are frequently the target of MITM attacks so that the attacker can capture login credentials and other sensitive data.<\/p>\n\n\n\n

Most cryptographic protocols include some form of endpoint authentication specifically to prevent MITM attacks. For example, the Transport Layer Security (TLS) protocol can be required to authenticate one or both parties using a mutually trusted certification authority. Unless users take heed of warnings when a suspect certificate is presented, however, an MITM attack can still be carried out with fake or forged certificates.<\/strong><\/p><\/blockquote>\n\n\n\n

An attacker can also exploit vulnerabilities in a wireless router\u2019s security configuration caused by weak or default passwords. For example, a malicious router, also called an evil twin, can be setup in a public place like a caf\u00e9 or hotel to intercept information traveling through the router. <\/p>\n\n\n\n

Other ways that attackers often carry out man-in-the-middle attacks include Address Resolution Protocol (ARP) spoofing, domain name system (DNS) spoofing, Spanning Tree Protocol (STP) mangling, port stealing, Dynamic Host Configuration Protocol (DHCP) spoofing, Internet Control Message Protocol (ICMP) redirection, traffic tunneling and route mangling.<\/p>\n","protected":false},"excerpt":{"rendered":"

Reading Time-approximately:<\/span> 2<\/span> minutes<\/span><\/span>A man-in-the-middle (MiTM) attack is one in which the attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other.\u00a0The attack is a type of eavesdropping in which the entire conversation is controlled by the attacker. Courtesy Post By TechTarget Contributor Sometimes referred to as a session\u00a0hijacking attack, MiTM has a strong chance<\/p>\n

Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[165,139,4,172,58,30,3,116,51,9,224,201],"tags":[],"class_list":["post-6518","post","type-post","status-publish","format-standard","hentry","category-cloud-security","category-data-security-strategies-and-governance","category-datacenter-news","category-datacentre-disaster-recovery-and-security","category-endpoint-security","category-expert-advise-and-opinion","category-industry-news-and-expert-advise","category-network-security","category-tech-acronyms-and-initialisms","category-tech-definitions","category-technical-explanations","category-wireless-network-security"],"_links":{"self":[{"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/posts\/6518","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/comments?post=6518"}],"version-history":[{"count":1,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/posts\/6518\/revisions"}],"predecessor-version":[{"id":6519,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/posts\/6518\/revisions\/6519"}],"wp:attachment":[{"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/media?parent=6518"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/categories?post=6518"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tekmart.co.za\/t-blog\/wp-json\/wp\/v2\/tags?post=6518"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}