Web Cache Poisoning - what it is, why it’s risky, and simple ways to stay safe

Web Cache Poisoning

What it is

Web cache poisoning is when attackers sneak bad content into a website’s cache. The cache is a “shortcut” server use to make pages load faster for everyone. If it’s poisoned, later visitors get the attacker’s fake version instead of the real page - which could show wrong info, a phishing login, or a malware download.

Why it matters

You can land on a trusted site and still see a fake page. That makes phishing more convincing and can spread malware to many people quickly.

How it works 

  • Find a gap: attacker discovers inputs (headers/URLs) the site doesn’t validate well.

  • Plant: crafts a request that makes the cache store a tainted response.

  • Serve: other users request the same page and receive the poisoned version.

  • Profit: fake logins steal passwords; script injections push malware or scams.

Red flags

  • A familiar site suddenly asks you to log in again on an odd-looking page.

  • Download prompts or pop-ups appear on pages that normally don’t have them.

  • Mixed messages: part of a page looks normal, but buttons/links go somewhere strange.

  • Friends report the same weird behavior on the same site around the same time.

Do it right

  • If a “trusted” site starts acting weird, stop and reload later or use a different device/network.

  • Don’t enter passwords on pages that look off - type the site’s address yourself and compare.

  • Use a password manager and MFA; the manager won’t autofill on fakes, and MFA limits damage.

  • Keep your browser and security software updated to block known malicious scripts.

    Glossary (A–Z)

    All A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

      • Related Articles

      • Phishing

        What it is Phishing is a scam where someone pretends to be a trusted person or service to trick you into giving up passwords, card numbers, or other sensitive data. It shows up in email, texts, social DMs, and look-alike websites. For a quick ...

      • Web Protection

        What it is Web protection is a bundle of tools and settings that keep you safer while you browse. It blocks dangerous sites and downloads, warns about fake logins, filters sketchy links, and helps keep your info private. It can run on your device ...

      • Data Execution Prevention

        What it is Data Execution Prevention (DEP) is a Windows safety net that stops code from running in places it shouldn’t—like the stack or heap. If malware tries to execute from those memory areas, Windows blocks it and shuts the app down instead of ...

      • EDR (Endpoint Detection and Response)

        What it is EDR is your always-on security team for laptops and servers. It watches what’s happening on each device, spots attacks in progress, and helps you respond fast - quarantine, investigate, and clean up. For details on capabilities and use ...

      • Security Software

        What it is Security software is a set of apps and services that protect your devices and data from hackers, malware, and mistakes. It covers tools like antivirus/anti-malware, firewalls, VPNs, email and web filters, intrusion detection/prevention, ...