What are the dangers of SSL hijacking?

Well, in reality, this is quite a dangerous threat vector. However, an attacker needs to combine many techniques like IP spoofing and DNS cache poisoning to carry out this attack, which makes it a bit difficult. Nevertheless, once successful, an attacker can access sensitive data or redirect the victims to a malicious site.

What does an SSL vulnerability mean?

It is a kind of security weakness that enables an attacker to steal private keys associated with the Secure Socket Layer (SSL). An attacker can also steal private keys for other sensitive data like passwords and usernames.

What does SSL spoofing mean?

In this method, an attacker acquires a spoofed server certificate and uses it to attach his public key to the target domain. As a result, the attacker will be able to carry out a man-in-the-middle attack when trusted by a user’s browser.

What is SSL Hijacking? Detection and Prevention Techniques