English 
Русский 
简体中文 
Português do Brasil 
Français 
Español 
Türkçe 
Polski 
Tiếng Việt 
한국어 
Nederlands 
Italiano 
日本語 
Eesti 
Čeština 
മലയാളം 
Bahasa Melayu 
हिन्दी 
اردو 
Bahasa Indonesia 
Safe WebShimming
Shimming is a type of attack used by hackers and malicious actors to gain unauthorized access to data or systems. It involves inserting a small piece of software, known as a shim, between an application to modify, delay, or block communications or data as it is exchanged between the application and its associated software components.
Shimming is also known as ‘application shimming’ or ‘shimming attacks’, and is a type of software exploitation or memory injection technique. It is often used in web applications and in other systems where an attacker attempts to bypass authentication or manipulate application data.
Shimming techniques can be difficult to detect, as the shim can be small and unobtrusive and can hide or disguise itself within the application’s code. It can also be used to insert malicious code into a legitimate application, resulting in it being executed without the user’s knowledge.
Shimming can also be used in conjunction with other attack methods such as phishing, social engineering, and malware, as attackers attempt to gain access to secure data or networks. The technique is often used in combination with Rootkits, as the Rootkits are designed to keep the shimming software hidden from detection.
Shimming can also be used in reverse engineering, as a way of bypassing or manipulating the security features of an application. As shimming requires additional software components, it is more difficult to detect than other techniques such as code injection.
Due to its effectiveness, such techniques have become increasingly popular as a means of data theft, illegal access, or sabotage. As such, organizations and companies need to ensure they have the necessary measures in place to mitigate the threat of shimming, including regularly scanning systems and applications for potential malicious scripts.
