Hi Friends!
My friends in Facebook complained that there was a video posted from a friend. He clicked on the video and he was presented with a fake CAPTCHA code, after which the video was indirectly posted the video onto his wall and also was "Liked" by him!
& he intended non of it!
So what went wrong? How did all of this happened if he never clicked "Share" or "Like"?
Dear friends! My pal was victim of ClickJacking. Let us understand in layman's language what ClickJacking is:
"Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages. It is a browser security issue that is a vulnerability across a variety of browsers and platforms. A clickjack takes the form of embedded code or a script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function. The term "clickjacking" was coined by Jeremiah Grossman and Robert Hansen in 2008. Clickjacking can be understood as an instance of the confused deputy problem."
--- Wikipedia
This definition, I presume is pretty straight forward.
You navigate to a site, you see a CATCHY (I guess, you understood what I mean. For those, who don't, hmm... Forget it!) pop up. You click on it to close the pop-up. But what you do not know is that there could be a Trojan horse associated with the click which can sneak into your computer system.
Click on the Link to know more. Here's an detailed explanation with a short demo and resolution techniques.
Surf Safe, Play Safe!
My friends in Facebook complained that there was a video posted from a friend. He clicked on the video and he was presented with a fake CAPTCHA code, after which the video was indirectly posted the video onto his wall and also was "Liked" by him!
& he intended non of it!
So what went wrong? How did all of this happened if he never clicked "Share" or "Like"?
Dear friends! My pal was victim of ClickJacking. Let us understand in layman's language what ClickJacking is:
"Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages. It is a browser security issue that is a vulnerability across a variety of browsers and platforms. A clickjack takes the form of embedded code or a script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function. The term "clickjacking" was coined by Jeremiah Grossman and Robert Hansen in 2008. Clickjacking can be understood as an instance of the confused deputy problem."
--- Wikipedia
This definition, I presume is pretty straight forward.
You navigate to a site, you see a CATCHY (I guess, you understood what I mean. For those, who don't, hmm... Forget it!) pop up. You click on it to close the pop-up. But what you do not know is that there could be a Trojan horse associated with the click which can sneak into your computer system.
Click on the Link to know more. Here's an detailed explanation with a short demo and resolution techniques.
Surf Safe, Play Safe!
Thank you for providing clear information on this. you can also refer Access control suppliers in hyderabad.
ReplyDelete