Hijacking of Accounts is still a possibility
The new set of issues in account hijacking are mainly split into two :
- Remote access sensitive data on the cloud through login information use
- Falsification and manipulation of information through hijacked
Other methods of hijacking are not excluded. They include scripting bugs and reused passwords, as well as cross-site scripting but also phishing, keylogging, and buffer overflow. The Man In Cloud Attack is the most notable new threat. It involves the theft of user tokens used in cloud structures in order to verify individual devices without requiring logins during each update and sync.