Types of Web API Attacks:

  1. Cross-Site Scripting – An attack where the attacker injects malicious scripts into the code of your trusted websites and applications.
  2. Denial of Service – Also known as DoS; A cyber-attack where the attacker makes a website or service unavailable by flooding the target with requests thus overwhelming its normal traffic. A distributed denial-of-service (DDoS) is subset of DoS attacks where attack is a distributed network of machines rather than a single attacker.
  3. Man-in-the-Middle – intercepts communication between two systems; attacker splits the connection into to then acts as a proxy and can modify the data
  4. Cross-Site Request Forgery – An attack that forces an end-user to execute unwanted actions on a web application. By masking a malicious link via email or chat as legitimate, an attacker may trick users into executing actions of the attacker’s choosing such as an unwanted transaction or changing vital login credentials.
  5. Injection – an attack that allows the attacker to insert code or inject into a program to execute remote actions that can read and modify sensitive data from a database or website
  6. Overflow – Also known as a buffer overflow; An attack where the attacker overflows a buffer past its limit. As a result, the program overwrites memory locations in the buffer. This could affect the memory locations of executable code causing unexpected results such as memory access errors, or crashes.
About the Author
Call me!
error: Content is protected !!
× Chat with us!