Back to list
Lv.2

Man-in-the-Middle Attack

Man-in-the-Middle Attack

A cyberattack in which an attacker secretly intercepts communication between two parties to spy on or alter the data.

In Simple Terms

A Man-in-the-Middle Attack is a cyberattack technique where someone ambushes internet communication midway to steal sensitive information like passwords. The attacker secretly slips in between the user and the website, making both sides think they're talking directly to each other. This can lead to real damage, like credit card numbers being stolen or fake data being sent without the user's knowledge.

Behind the Name

The name paints a picture: an attacker slips into the "middle" of a conversation between two parties, secretly intercepting and relaying their messages so each side thinks it's talking directly to the other. That's where "man in the middle" comes from — also known by its abbreviation, "MITM."

Take a Closer Look!

A Man-in-the-Middle Attack is a cyberattack technique where someone inserts themselves between two parties communicating over a network, secretly eavesdropping on or tampering with their exchange.
By impersonating both the sender and the receiver, the attacker can steal information without the victim ever noticing.

Picture a mail carrier who secretly reads your letter, rewrites the contents, and then delivers it to the intended recipient — that's essentially what's happening.
In the real world on the internet, this often happens when an attacker sets a trap using an unencrypted, free Wi-Fi hotspot. Without realizing it, users get routed through a fake access point, and their passwords and other data get read along the way.

To protect against this kind of damage, it's important to use websites that support HTTPS, a mechanism that encrypts the entire communication.
It also helps to stay alert — avoid connecting to suspicious Wi-Fi networks, and don't proceed to sites that trigger encryption warnings.