WHAT IS CSRF?
Introduction to CSRF? Cross Site Reference Forgery is also referred as CSRF, and sometimes XSRF. It is a type of ‘fraud attack’ that utilizes the user’s credentials for entering the website and accesses the user’s data. It is usually executed by prompting an unknown link or page advertisement, asking the user to click on it and leading it to a deceiving malware. Another method of attracting an user into CSRF is, by sending scam links in the emails or SMS, and encouraging the user to access the links provided. How does it work? It works only if the potential victim is authenticated. An attacker can enter into a website by bypassing the authentication process using a CSRF attack. CSRF attacks come into use, in the scenarios where a victim having additional rights performs some action and others can’t access or perform these actions. For eg, online banking. CSRF Attack is Executed in Two Main Parts The first step is to attract the user/victim to click a link or load a pag
