When a website thinks that a request came from the user's browser and is made by the user himself when actually the request was planted in the user's browser by a hacker, what type of attack has occurred?
A. XSS
B. insecure direct object references
C. memory leaks
D. CSRF
D
Explanation : Cross-site Request Forgery (CSRF) is an attack which causes an end user to execute unwanted actions on a web application in which he/she is currently authenticated. Unlike XSS, in CSRF the attacker exploits the website's trust of the browser rather than the other way around. The website thinks that the request came from the user's browser and is made by the user himself. Actually the request was planted in the user's browser. It usually gets there by a user following a URL that already contains the code to be injected.
You might also like to view...
You have a printer on the second floor that is not printing for anyone. You check the printer and it has power and is ready to go. Paper is in the tray and toner was just changed. It is connected to the network. You check local machines and jobs are being queued on the local machines. What should you do next?
A. Move the printer to a known good port and connect to the network. B. Replace the network cable to the printer C. Verify the server's print spooler service is running D. Attach the printer directly to the laptop and print a test page
A process can arrange to receive a signal when input arrives by using
A. non-blocking input B. asynchronous input