What is the common term for accessing a system using stolen authentication tokens or credentials?

The term commonly associated with accessing a system using stolen authentication tokens or credentials is session hijacking. This type of attack occurs when an unauthorized individual takes control of a user session after the user has logged in, effectively impersonating them without needing to know their username or password. By obtaining session tokens, which can include cookies or other session identifiers, the attacker can gain unauthorized access to the user's active session.

Session hijacking exploits the trust relationship between a user's session and the application, allowing attackers to perform actions as if they were the legitimate user. This technique underscores the importance of session management and securing tokens against interception, as once an attacker acquires session credentials, they can bypass typical authentication mechanisms.

Understanding the nuances of session hijacking helps in implementing security measures like token expiration, secure session management practices, and the use of HTTPS to protect session tokens during transmission.