What is the attack performed by Boney in the above scenario?

Boney, a professional hacker, targets an organization for financial benefits. He performs an attack by sending his session ID using an MITM attack technique. Boney first obtains a valid session ID by logging into a service and later feeds the same session 10 to the target employee. The session ID links the target employee to Boneys account page without disclosing any information to the victim. When the target employee clicks on the link, all the sensitive payment details entered in a form are linked to Boneys account.

What is the attack performed by Boney in the above scenario?
A . Session donation attack
B . Session fixation attack
C . Forbidden attack
D . CRIME attack

Answer: A

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments