session hijacking

Session hijacking has evolved to bypass multi-factor authentication (MFA) checks, with Microsoft reporting 147,000 token replay attacks in 2023, a 111% increase from the previous year. Google noted that session cookie attacks now rival traditional password-focused cyberattacks. Modern session hijacking techniques include Adversary-in-the-Middle (AitM) attacks, Browser-in-the-Middle (BitM) attacks, and infostealers. Infostealers can target all session cookies and credentials stored in a user's browser and were responsible for 43% of malware detected in 2023, according to the 2024 Sophos Threat Report. Advanced malware can evade detection by Endpoint Detection and Response (EDR) systems. Effective prevention measures include keeping personal information private, using robust antivirus and EDR solutions, and implementing strong in-app controls.