What type of password attack is a Passive Online attack?

Passive Online Attack Information Provider, Examples of Passive Online. What is the difference between Active Online and Passive Online attack?

The  advent of the Internet brought many big changes to people's lives, in addition to convenience, which are negative aspects that not everyone understands. One of the biggest risks is password hacking on the internet. The following article will give you a more comprehensive look at different types of password attacks, especially Passive Online. Let's find out through offline.

1. What is Passive Online Attack?

Passive Online attack is a form  of password attack , attacker (hacker) will "sniff" (sniffing) to find vulnerabilities, traces passwords in the same network.

Before posting, the user's password will be verified in several stages. First, the password is "captured" (captured) to compare with a word list or dictionary. The password is then encrypted or "hashed" aimed at preventing unauthorized access and authenticating the origin (the owner).

The attackers will use a number of special tools to decrypt the algorithm and gain access to the password.

What type of password attack is a Passive Online attack? Picture 1What type of password attack is a Passive Online attack? Picture 1

Common Forms for Passive Online attacks

- Traffic analysis

Observe the website movement and user visitor activity for each website.

- Exploit

Check email, messages have been decoded.

- To scan

Check the extension (open ports, low security framework) associated with the web for security holes.

- Encode

Block scrambled data streams and decrypt the encryption algorithm.

What type of password attack is a Passive Online attack? Picture 2What type of password attack is a Passive Online attack? Picture 2

2. Passive Online Example

In the  Man In The Middle  (MITM - another Passive Online attack) the hacker intercepts the password authentication request and sends it to their own server.

Soon after, the hacker embeds a spy assessing the connection between the user and the server. In this way, the hacker can detect the two links, capture the user's secret key and password on the way to the confirmation server.

The attacker also sends back authentication packets to impersonate the user to authenticate the password without having to crack the secret key.

What type of password attack is a Passive Online attack? Picture 3What type of password attack is a Passive Online attack? Picture 3

3. The difference between Active Online and Passive Online attack

- Active Online

The attacker will try to modify the content of the message.

Endanger the usability (availability of documents or messages).

+ Victims (users) need to pay attention when detecting the intrusion.

+ The victim is notified of the attack.

What type of password attack is a Passive Online attack? Picture 4What type of password attack is a Passive Online attack? Picture 4

- Passive Online

The attacker will observe the messages and copy them for malicious use.

+ Threats to confidentiality.

+ User should pay attention to avoid (using high-strength passwords with two-factor authentication).

+ The victim was not informed.

What type of password attack is a Passive Online attack? Picture 5What type of password attack is a Passive Online attack? Picture 5

The article covers relevant information about Passive Online password attacks and the difference between Passive Online attacks versus Active Online attacks. Thank you for watching and see you in the following articles.

4.7 ★ | 3 Vote