... 窃取会话令牌(Stealing Session tokens) 破坏网站(Defacing the Website) 造成DOS攻击(Causing DOS) ...
基于12个网页-相关网页
季桂林也表示,这些袭击大多是为了破坏网站,或者是为了探取军事机密。
Ji says the attacks were either carried out to disrupt the Web site or infiltrate it in search of military secrets.
例如,如果一段代码处理提交表格时符合一定的字符串形式,它就能利用而破坏网站。
If the code that handles a submitted form, for example, doesn't create exceptions for particular strings, it can be used to subvert the site.
报告进一步指出:“如此级别的侵入可对特定用户或网站进行监督,能够破坏数据的传输,阻止用户访问网站,甚至在用户不同意的情况下改变数据的流向。”
From the report: "This level of access could enable surveillance of specific users or sites." It could disrupt a data transaction and prevent a user from establishing a connection with a site.
Or a lot of the times when a website is compromised and you're able to steal someone's usernames and passwords, very often are the result of simple little things like this.
很多时候,当要访问的网站被人破坏了,你就有机会窃取别人的账号,和密码,正是因为这样或那样的小疏忽存在,才会导致这种事情频频发生。
应用推荐