Man-in-the-middle attack

“Man-in-the-Middle” translates as middleman. Because in such an attack, someone places themselves as a middleman between two communication parties – without their knowledge.
The aim is to read the communication, to change it if necessary and to find out confidential information such as passwords and login data.

What is meant by man-in-the-middle attack in detail?

There are different approaches to these attacks. Basically, they can be divided into attacks that target

• technical gaps, e.g. in servers and programs, or
• human error, e.g. when accessing someone else’s Wi-Fi.

An attack pattern that is easy to understand even for laymen is the feigning of public Wi-Fi access, e.g. in airports, hotels or cafés. The supposed Wi-Fi access has a legitimate-sounding name and is characterized by a strong signal. But all traffic passes through the man-in-the-middle system – including all passwords, usernames, bank details, etc. Anyone who uses this supposed Wi-Fi access does not notice anything about the attack. This is because the man-in-the-middle forwards the data to the destination address.

Where do I encounter the topic of man-in-the-middle attacks in my everyday work?

In principle, this applies to every data exchange, especially via the Internet.
In any case, you should consider man-in-the-middle attacks before and when using public Wi-Fi access.

What can I do to improve my security?

• Meticulously make sure that your entire system is up to date and install updates immediately. This is especially true for your web browser.
• For websites, make sure that the connection is secured via SSL or TLS .
• Use two- or multi-factor authentication whenever it is offered. In most cases, this includes a one-time password that is sent to you by SMS, for example. Prioritize channels that a man-in-the-middle attack is unlikely to have access to. For example, an SMS instead of an e-mail.
• If possible, do not use public Wi-Fi access.
• If you have to use public Wi-Fi access, you reduce your risk. Pay close attention to connecting to the legitimate Wi-Fi. Do not download data, transmit passwords or use online banking.