IJISC
  • Indexed in

  • Latest News

    December 30, 2024
    Volume 13, Issue 2 of the International Journal of Information Security and Cybercrime was published
    July 1, 2024
    Volume 13, Issue 1 of the International Journal of Information Security and Cybercrime was published
    December 27, 2023
    Volume 12, Issue 2 of the International Journal of Information Security and Cybercrime was published
  • --- More News ---
  • Popular Articles

  • Unveiling User Enumeration Attacks: Methods, Impacts and Mitigation Strategies


    Author(s): MĂCSINOIU, Venera-Elena

    Quick view | Full article | Citations | Views: 115


    Author(s) keywords: , , , ,


    Reference keywords: , ,


    Abstract:

    This paper examines the vulnerabilities posed by user enumeration attacks and presents effective prevention techniques to safeguard against them. The paper investigates the various approaches that hackers use to compromise unsecured web application modules, including exploiting insecure user database interactions. Additionally, the paper discusses effective countermeasures, such as two-factor authentication, rate limiting, and password policies, that can prevent enumeration attacks. The research presented in this paper contributes to the field of data protection and privacy by identifying the unique characteristics of user enumeration attacks and proposing measures to enhance the security of web applications. The paper emphasizes the importance of securing user databases and educating users on the risks of user enumeration attacks as essential measures for safeguarding sensitive information.



    References:

    [1]. OWASP Top Ten 2017, A2:2017-Broken Authentication, https://owasp.org/www-project-top-ten/2017/A2_2017-Broken_Authentication
    [2]. E. Kost, What is an Enumeration Attack? How they Work + Prevention Tips, https://www.upguard.com/blog/what-is-an-enumeration-attack
    [3]. RiskXchange, How to prevent an enumeration attack, https://riskxchange.co/4317/how-to-prevent-an-enumeration-attack/
    [4]. R. Das, What enumeration attacks are and how to prevent them, https://www.techtarget.com/searchsecurity/tip/What-enumeration-attacks-are-and-how-to-prevent-them



    Additional Information

    Article Title: Unveiling User Enumeration Attacks: Methods, Impacts and Mitigation Strategies
    Author(s): MĂCSINOIU, Venera-Elena
    Date of Publication: 2024-12-30
    Publication: International Journal of Information Security and Cybercrime
    ISSN: 2285-9225 e-ISSN: 2286-0096
    Digital Object Identifier: 10.19107/IJISC.2024.02.06
    Issue: Volume 13, Issue 2, Year 2024
    Section: Cyber-Attacks Evolution and Cybercrime Trends
    Page Range: 59-64 (6 pages)



    Copyright ©2012-2025
    The International Journal of Information Security and Cybercrime (IJISC)

    All rights reserved
    The International Journal of Information Security and Cybercrime is a trademark of the Romanian Association for Information Security Assurance (RAISA).
    No part of this publication may be reproduced, stored in a retrieval system, photocopied, recorded or archived, without the written permission from RAISA. When authors submit their papers for publication, they agree that the copyright for their article be transferred to the Romanian Association for Information Security Assurance, if the articles are accepted for publication. The copyright covers the exclusive rights to reproduce and distribute the article, including reprints and translations.