- This event has passed.
Broken Authentication Vulnerabilities | Knowledge Sharing
March 3 @ 6:00 pm - 7:00 pmFree
Our weekly knowledge sharing session about Broken Authentication by Sparsh Kulshrestha, Cybersecurity Analyst in Security Research. Broken Authentication is an umbrella term for several vulnerabilities that attackers exploit to impersonate users online. Any security flaw in a system which was occurred due to an error in the implementation of authentication and session management falls under broken authentication.
A lot of websites requests their users to log in or register to avail access to its services. Usually, this login system possesses a username and an associated password. This pair of the right credentials generates a unique session ID for each of its account holders. It is combined to identify the unique identity of the associated user. If this isn’t implemented correctly, an impostor can misuse the situation.
In simpler words, broken authentication attacks allow the perpetrator to either gain access or bypass the user authentication system of a web application.
Broken authentication targets
- session tokens, or other entities
which are dealing with the user’s identity. The broken authentication and session management flaws permit attackers to target a specific or group of account holders. If the attacker is successful, they get full access to the account and can harm the victim in many ways. The attacker can cause reputational and financial loss. They can act as an impostor to malign the personal relationships of the victim, too. Selling the compromised credentials to the other party is another possibility.
What audience can learn from this talk ?
With the session the users can
- Test for Broken Authentication Vulnerabilities
- exploit and mitigate broken Authentication Vulnerabilities
- Cybersecurity Analysts
- Students who are into Cybersecurity
Register and See the event live at Event link | Broken Authentication Vulnerabilities | Knowledge Sharing