← Back to glossary
🕵️

Man‑in‑the‑Middle (MITM) Attack

Threats

TLS (Transport Layer Security) VPN (Virtual Private Network) HTTPS Certificate Authority (CA)

On-path interception and manipulation of traffic.

Definition

MITM attacks occur when an adversary positions themselves on the communication path and can eavesdrop, modify, or inject traffic, often exploiting weak transport security.

In plain English On-path interception and manipulation of traffic.

Why this matters

Why it matters: It threatens confidentiality and integrity of communications and can lead to credential theft.

Example

Example: TLS-stripping attempt on an HTTP endpoint that should redirect to HTTPS.