Caadi ahaan loo yaqaan MitB , Weerarka Man In The Browser waa mid ka mid ah noocyada ugu khatarta badan ee weerarrada uu isticmaali karo dembiilaha internetka. Habkani wuxuu adeegsanayaa isticmaalka Trojan Horse ama malware la mid ah si uu uga helo macluumaadka muhiimka ah isticmaalayaasha mareegaha, gaar ahaan bangiyada iyo macluumaadka kaararka deynta. Waa qayb ka mid ah koodka beddela oo ku dara meelo kala duwan oo wax gelinta bogga mareegaha aad booqanayso. Mar haddii URL- ka aan la beddelin, waxaad aaminsan tahay in goobta ay u baahan tahay macluumaadkaas, si fudud ayaad u buuxinaysaa.

Ninka ku jira Browser ayaa sharaxay

Si ka duwan sida Ninka Weerarka Dhexe^{(Man In The Middle Attack)} , halkaas oo qolo saddexaad ay ku taal inta u dhaxaysa laba dhammaadka dhegeysiga baakadaha si loo helo macluumaad faa'iido leh, weerarka MitB^{(MitB attack)} wuxuu ku saabsan yahay beddelka iyo ku darida goobaha wax-gelinta ee bogga aad booqanayso. Malware sida Horse Trojan^{(Trojan Horse)} wuxuu ku yaalaa inta u dhaxaysa kombiyuutarkaaga iyo server-ka goobta. Isticmaalka malware-kaas, meelo kala duwan ayaa lagu daraa mareegaha, iyaga oo ku weydiinaya macluumaadkaaga sirta ah.

Xaaladaha qaarkood, maaha bog oo keliya laakiin dhammaan boggaga internetka ee taxanaha ah ayaa loo habeeyey si aad u hubiso inay run tahay. Maadaama ay ku salaysan tahay malware-ka akhrinta ciwaannada IP-yada, waxay u eegtahay maamulayaasha shabakadaha. Markaad shaki gasho, qaado sawir qaade oo u dir maamulayaasha shabakada si loo xaqiijiyo. Waxaa laga yaabaa inaad shaki gasho marka si lama filaan ah boggaaga bangigaagu u bilaabo inuu weydiiyo xaqiijinta iyadoo la adeegsanayo kaarka deynta.

Tusaale ahaan, inta badan mareegaha bangiga ayaa si fudud ugu baahan aqoonsigaaga iyo PIN ( OTP ) si aad u gasho. Qaar baa laga yaabaa inay isticmaalaan furaha sirta ah. Laakiin wax kasta oo intaas ka badan, sida ku weydiinaya lambarkaaga kaarka deynta, PIN , code CSV , iwm, waa in ay qaylo dhaan gudaha madaxaaga garaacaan. Haddii ay taasi dhacdo, isla markiiba jooji, qaado sawir-qaad oo u dir bangiga adoo waydiinaya inay dhab ahaantii rabaan xogtaas.

Ogow in tani ay ka duwan tahay phishing-ka caadiga ah. Marka phishingka, waxay kuu soo diraan iimaylo ay isku dayayaan inay ku xidhaan ama injineer bulsho si ay u siiyaan macluumaadka aad rabto. Ninka ku jira Browser - ka, dembiilaha interneedku wuxuu ka dhigayaa goobta wax gelinta mid run ah. Waxay u egyihiin run maadaama URL- ku la mid yahay xitaa ka dib markii la jabsaday. Mararka qaarkood, waxay yiraahdaan waxay rabaan inay kor u qaadaan ammaankaaga oo markaa waxaad u baahan tahay inaad siiso iyaga macluumaadka loo baahan yahay (dheeraad ah, shakhsi).

Sidee MitB Loo Fuliyaa

Weerarka Man In The Browser wuxuu ku tiirsan yahay malware si uu u ogaado meesha aad u socoto internetka^(Internet) . Kadibna waxay u abuurtaa kood goobaha wax gelinta dheeraadka ah waxayna ku dhejisaa bogga shabakada ee aad booqato. Waxaa laga yaabaa inaad la yaabto haddii kumbuyuutarkaagu nadiif yahay halka uu malware-ku ka soo galo! Jawaabtu waxay ku jirtaa kordhinta browserka, balastar (been abuur ah), iyo walxaha DOM . Taas macnaheedu waxa weeye, browser-ku waa la jabsaday iyadoo la isticmaalayo hab ama hab kale oo laguma qabsanayo fayraska aad isticmaalayso. Tani waa waxa ka dhigaya mid adag in la ogaado weerarrada MitB .

Ka^(Protection) - hortagga ninka^(Man) ku jira weerarka Browser

Marka laga reebo isticmaalka OS-cusboonaaday iyo software ammaan oo la cusboonaysiiyay, ilaalinta xilligan qorista maqaalkan waa caqli-galnimo. Waa inaad ka taxadartaa ^{(be careful)}intarneedka^(Internet) . Adigu ma siisid kaarka deynta ama macluumaadka badbaadada bulshada qofna si sahlan nolosha dhabta ah markaa maxaad u samaynaysaa taas aduunka internetka? Sii wad inaad raadiso waxa dhammaan macluumaadka ay ku weeydiiyaan markaad ku qorayso ama diiwaangelinta. Haddii wax aysan soo kordhinayn, jooji oo wargeli maamulayaasha shabakadaha. Waxa kale oo aad xidhi kartaa browserka oo aad bilaabi kartaa fadhi cusub si aad u aragto in isla goobihii ay soo baxeen mar kale.

Marka laga reebo kuwa kor ku xusan, si aad uga hortagto weerarka Man In The Browser , waxaad sidoo kale u baahan tahay inaad ilaaliso kordhinta, iwm, hubinta. Isticmaal^(Use) kaliya kordhinta sumcadda leh oo isku day inaad isticmaasho ugu yaraan. Haddii aad wali hesho wax kalluun ah, la xidhiidh maamulayaasha websaydka ee website-ka la sheegay.

What is Man In The Browser attack - Prevention and Detection

Commonly callеd MitB, the Man In The Browser attack is one of the most dangerous types of attacks a cybercriminal can use. This method employs the usage of a Trojan Horse or similar malware to gain important information from users of websites, especially banking and credit card information. It is a piece of a code that alters and adds different input fields to a webpage you are visiting. Since the URL is not changed, you believe that the site needs that information, you simply fill it in.

Man In The Browser attack explained

Unlike Man In The Middle Attack, where a third party is situated between two endpoints listening to packets for useful information, the MitB attack is about altering and adding input fields to the website you are visiting. A malware like a Trojan Horse is situated between your computer and the site server. Using that malware, different input fields are added to the website, asking you for your confidential information.

In some cases, it is not just a page but the entire sequence of webpages arranged so that you are sure it is genuine. Since it is based on the malware reading the IP addresses, it looks okay to webmasters. When in doubt, take a screenshot and send it to the webmasters for confirmation. You may get doubts when suddenly your bank website starts asking verification by means of a credit card.

For example, most bank websites simply require your ID and a PIN (OTP) to log in. Some may use passwords in addition. But anything more than that, like asking you your credit card number, PIN, CSV code, etc, should ring an alarm inside your head. If that happens, stop immediately, take a screenshot and send it to the bank asking if they really want that data.

Note that this is different from normal phishing. When phishing, they send you emails trying to hook or social engineer you into providing them with the information you want. In Man in the Browser attack, the cybercriminal makes the input field look genuine. They look true as the URL is the same even after being compromised. Sometimes, they just say they want to up your security and hence you need to provide them with the required (additional, personal) information.

How is MitB Implemented

Man In The Browser attack relies on malware to know your destination on the Internet. Then it creates code for extra input fields and places them on the website page you visit. You may wonder if your computer is clean where the malware comes in! The answer lies in browser extensions, patches (fake), and DOM objects. That is to say, the browser is compromised using some method or the other and is not caught by the anti-virus you are using. This is what makes it complex to detect MitB attacks.

Protection against Man In The Browser attack

Apart from using an up-to-date OS and good updated security software, the protection at the moment of writing this article is just common sense. You have to be careful on the Internet. You do not provide credit card or social security information to anyone easily in real life so why should you do that in an online world? Keep looking for what all information asks while logging you or at registration. If something does not add up, quit, and inform webmasters. You can also close the browser and start a new session to see if the same fields appear again.

Other than the above, to prevent Man In The Browser attack, you also need to keep extensions, etc, in check. Use only reputed extensions and try to use a minimum of them. If you still find anything fishy, contact the webmasters of the said website.

Related posts

• Soo dejinta Tor Browser: Si badbaado leh u ilaali Qarsoodigaga iyo Mareegta Internetka

• Sida dib loo bilaabo Browserkaaga adiga oo aan lumin tabs gudaha Windows 11/10

• Browser ayaa ku xayirmay hubinta Browserkaaga ka hor intaadan galin fariinta

• Kordhinta browserka si loo dhaafo ama si toos ah u buuxi CAPTCHA

• Tijaabi Badbaadada Browser si aad u hubiso in Browserkaaga uu sugan yahay

• 10ka ugu wanaagsan ee Chrome, Edge, iyo Firefox kordhinta si loo kaydiyo bogga si loo akhriyo hadhow

• Maamul ama dami Browser Add-ons & Extensions in Chrome, Firefox

• Sida loo furo biraawsarkaaga Chrome, Edge ama Firefox ee qaabka Shaasha buuxda

• Ammaan ma tahay in lagu kaydiyo erayga sirta ah ee Chrome, Firefox ama browserka Edge?

• Iridium: browser-ku-saleysan Chromium oo leh astaamo sirnimo oo xooggan

• Hubinta Ammaanka Khibradda Daalacanka: Sidee buu ammaan u yahay browserkaagu?

• Sida loo Turjumo bogga Shabakadda Chrome, Firefox iyo Edge

• Afduubka Browser-ka iyo Aaladaha Ciribtirka Af-duubaha Biraawsarkaaga

• Hyperlink Auditing ee Chrome & Firefox browsers

• FIX: reCAPTCHA oo aan ka shaqayn Chrome, Firefox, ama browser kasta

• Xawaaraha ugu fiican ee browser-ka bilaashka ah iyo qalabka tijaabada khadka ee waxqabadka

• SoftPerfect Cache Relocator for Windows 10

• Colibri waa Browser aad u yar oo aan lahayn Tabs for Windows PC

• Sida ugu wanaagsan ee loo ilaaliyo daalacashada webka Windows 11/10 PC

• Talooyin iyo tabaha ugu Fiican ee Vivaldi Browser