Definition:
A drive-by attack is a type of cyberattack in which a user is unknowingly infected with malware by visiting a compromised website. No user interaction is required for the infection to occur.
Use Cases:
- Used by attackers to distribute malware through legitimate websites that have been compromised.
- Employed in phishing campaigns to trick users into visiting malicious websites that execute drive-by downloads.
Related Terms:
Questions and Answers:
- How does a drive-by attack work?
In a drive-by attack, attackers inject malicious code into a legitimate website. When a user visits the site, the code exploits vulnerabilities in the user’s browser or plugins to install malware.
- What are the signs of a drive-by attack?
Symptoms may include unusual browser behavior, slow performance, and the sudden appearance of unfamiliar files or programs on a device.
- How can users protect against drive-by attacks?
Users can protect against drive-by attacks by keeping browsers and plugins up to date, enabling pop-up blockers, and avoiding suspicious websites.