Cybersecurity
Man-in-the-Middle Attack
Definition
A Man-in-the-Middle (MITM) attack is an attack where the attacker secretly relays and possibly alters the communication between two parties who believe they are directly communicating with each other.
Why It Matters
MITM attacks allow an attacker to intercept, read, and modify sensitive data without the victim's knowledge. This can be used to steal passwords, financial information, or inject malicious content.
Contextual Example
A user connects to a fake Wi-Fi access point at a coffee shop set up by an attacker. The attacker is now "in the middle" and can intercept all the user's unencrypted internet traffic, including passwords for websites they log into.
Common Misunderstandings
- Using HTTPS and other forms of end-to-end encryption is the primary defense against MITM attacks, as it makes the intercepted data unreadable.
- These attacks are a major risk on public, unsecured Wi-Fi networks.