- An attack in which an attacker steals authentication tokens after all factors have been validated. These tokens, which can include cookies but also bearer tokens as well as JWTs (JSON Web Tokens), are then used to perform session hijacking.
- More about this term (beta): Web search, articles and videos, books
- Previous term: Pascal case
- Next term: Passkey
- Random term: Block-level element