Forging Login Requests
An attacker may forge a request to log the victim in to a target website using the attacker's credentials; this is known as login CSRF. Login CSRF makes various novel attacks possible; for instance, an attacker can later log in to the site with his legitimate credentials and view private information like activity history that has been saved in the account. The attack has been demonstrated against YouTube.
Read more about this topic: Cross-site Request Forgery
Famous quotes containing the words forging and/or requests:
“The female culture has shifted more rapidly than the male culture; the image of the go-get em woman has yet to be fully matched by the image of the lets take-care-of-the-kids- together man. More important, over the last thirty years, mens underlying feelings about taking responsibility at home have changed much less than womens feelings have changed about forging some kind of identity at work.”
—Arlie Hochschild (20th century)
“Do not worry about anything, but in everything by prayer and supplication with thanksgiving let your requests be made known to God.”
—Bible: New Testament, Philippians 4:6.