Question
Which of the following is a characteristic of Cross-Site
Request Forgery (CSRF) attacks?Solution
Cross-Site Request Forgery (CSRF) exploits the trust a website has in a user’s browser. An attacker tricks an authenticated user into performing unintended actions, such as transferring money or changing account details, without their consent. For instance, a malicious email link might force a logged-in bank user to transfer money to the attacker’s account.
- Key Condition: The victim must be logged in, as CSRF exploits authenticated sessions.
- Impact: CSRF can lead to unauthorized transactions, changes in user settings, and other unintended operations.
- Prevention: Developers can use anti-CSRF tokens, verify the HTTP Referrer header, and require user re-authentication for sensitive actions.
- Browser vulnerabilities: CSRF exploits user actions and session trust, not browser vulnerabilities.
- SQL commands: This describes SQL Injection, not CSRF.
- Flooding servers: This characterizes DDoS attacks, unrelated to session misuse.
- Script injection: Script injection is XSS, not CSRF.
Walraw’s Law states the following:
For a positively sloped LM curve, which of the following statements is CORRECT?
The Compensating Wage Differential theory predicts that, ceteris paribus, jobs that are considered less desirable (e.g., higher risk or unpleasant condi...
Based on the sticky-price model, the short-run aggregate supply curve will be steeper, the greater the_____
Which of the following statements about the expansion path is true?
The substitution effect for a commodity is
For the given data, n=10, XÌ… = 20, YÌ… = 40, ∑(X-5)^2 = 100, ∑(Y-20)^2 =160 and ∑(X-5)*(Y-20) = 80. Calculate the correlation coefficient ...
Which of the following is correct?
Within the AD-AS model, a phenomenon known as stagflation is best represented by a shift in which curve, and with what consequence for the short-run equ...
Longevity is proxy for ---- in the Human Development Index?
