Security & Compliance(CSRF)

Controls that a company implements to protect its assets and meeting the standards that a third-party has set forth as best practices.

Cross site request forgery (CSRF), also known as XSRF, Sea Surf or Session Riding, is an attack vector that tricks a web browser into executing an unwanted action in an application to which a user is logged in.

Prevention

  • Logging off web applications when not in use

  • Securing usernames and passwords

  • Not allowing browsers to remember passwords

  • Avoiding simultaneously browsing while logged into an application

  • Denying unauthorized actors access to applications.

ย