Question: You are a security analyst for a large e - commerce company. You notice that a significant number of users are complaining about unauthorized transactions

You are a security analyst for a large e-commerce company. You notice that a significant number of users are complaining about unauthorized transactions on their accounts.
After investigating, you suspect that the site might be a victim of a Cross-Site Request Forgery (CSRF) attack.
Which of the following actions should you take next?
answer
Implement a CSRF token in your web application's forms.
Implement CAPTCHA on all transaction pages to prevent automated attacks.
Ignore the complaints as false positives since the transactions are coming from the users' IP addresses.
Advise users to change their passwords immediately.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

HO ME F EA T U R ES Q &A BLO G FO R U M NEW S EV ENT S P A P ER S Subscribe to APMdigest E-mail Address: SEARCH THIS SITE: Search HO T TO PICS APM BSM 15 Ways to Bridge the Gap Between IT and...

Q:

Using the U.S. Securities and Exchange Commission?s EDGAR database, select a public company that has consolidated subsidiaries. To minimize the chances of classmates selecting the same company,...

Q:

There are two problems due this week (each worth 35 points) as follows. Case 5-1David L. Miller: Portrait of a White-Collar Criminal (page 144). In comprehensive paragraphs, answerrequirements 1?6....

Q:

Write a SUMMARY of the case as followed: INTRODUCTION The commercialisation of the Internet and the subsequent evolution of electronic commerce have resulted in a dynamic business environment where...

Q:

Hi Sara, Please find my attachments for your information. Thank you Masoumeh P 3-2 P 3-2 The following information was obtained from the accounts of Lukes, Inc., as of December 31, 2012. It is...

Q:

Hi Sara, Please find my attachments for your information. Thank you Masoumeh P 3-2 P 3-2 The following information was obtained from the accounts of Lukes, Inc., as of December 31, 2012. It is...

Q:

Hi Sara, Please find my attachments for your information. Thank you Masoumeh P 3-2 P 3-2 The following information was obtained from the accounts of Lukes, Inc., as of December 31, 2012. It is...

Q:

Concordia University Libraries CITATION GUIDES APA Citation Style This guide provides a basic introduction to the APA citation style. It is based on the 5th edition of the Publication Manual of the...

Q:

Concordia University Libraries CITATION GUIDES APA Citation Style This guide provides a basic introduction to the APA citation style. It is based on the 5th edition of the Publication Manual of the...

Q:

Return Predictability along the Supply Chain F.AJ inancial Analysts Journal Volume 66 . Number 3 @2010 CFA Institute these two studies were based on the idea that the 2007, the last month for which...

Q:

Determine the missing amounts. Assume all changes in stockholders' equity are due to changes in retained earnings. Walco Corporation Gunther Enterprises Beginning of year Total assets Total...

Q:

The U.S. Bureau of Economic Statistics reports that the average annual salary in the metropolitan Boston area is $50,542. Suppose annual salaries in the metropolitan Boston area are normally...

Q:

What is an advantage of a market economy? A An absence of poverty B Consumer sovereignty C Firms having considerable market power D Full employment

Q:

6 Future Value of Annuity. Jen spends $7 per week on lottery tickets If she takes the same amount that she spends on lottery tickets and invests each week for the next five years at compounded...

Q:

Why do HCMSs exist? Do they change over time?

Q:

Suppose the price of oil falls sharply (as it did in 1986 and again in 1998). a. Show the impact of such a change in both the aggregate-demand/aggregate-supply diagram and in the Phillips-curve...

Q:

When did the shift from Text-based Business Application Software to GUI-based Applications begin?