Beware Of Clickjacking – Another Hacking Technique

‘Click Jacking’ is the latest browser-based security problem. Since it’s entirely browser based it affects everyone, regardless of their operating system. This is a cross-browser problem and also affects Flash. Its very simple to understand how it works. The basic purpose of clickjacking is to trick people into clicking on something the attacker want them to click on but user don’t want to click on.

This attack uses CSS and iFrames to place invisible content over visible buttons or links. Imagine your webcam and mic turned on by a click on some website and the attacker is spying on you through your own mic and webcam. Since the attack is running in your browser the attacker has access to anything you’re logged in to. They could hijack your clicks to reprogram your router, mess with your FaceBook profile, or interact with your online banking! The only slight silver lining is that attacks are limited to things that can be done by clicking.

Regarding protection against the hack, the only authenticated solution is NO SCRIPT, which is a browser plugin in firefox. You have to configure it as the default settings so it provides protection against IFRAME. Just open the options of the NO SCRIPT and in “Plugins” tab, click “Forbid “. This will do the job.


Got computer/technical problems? Get FREE help from Technize Forums
Posted by xesh Internet, Security, Tips and Tweaks Subscribe to RSS feed
« « Find Similar Images – Image Search Engine

Download Privacy Guardian With Valid License for FREE! » »

3 Comments to “Beware Of Clickjacking – Another Hacking Technique”

  1. mgm issb.com.pk says:
    May 6, 2009 at 11:18 pm

    I sometimes get a warning message from no script about “possible click jacking attempt” when I click somewhere on certain pages. You are right that the content is not visible and I intended to click somewhere else.
    1. I wanted to know that is it damaging my computer files or data or is it just hacking my resources?
    2. when I have closed the browser or restarted my PC, is anything still inside my PC left by a previous click-jacked session?
    3. What are experts doing about it? now that we are seeing web 2.0 almost everywhere….. is it not going to bring in more threats in future? I just wanted to know about the future trends. What other resources are there to know more about it?

    these were just few random thoughts. Can anyone put some light on these?

  2. Face Ajan says:
    May 9, 2010 at 2:38 am
  3. Safe Browsing Using Firefox | Free Downloads, Software Reviews, Security Solutions, Troubleshootings and Tips and Tricks says:
    June 20, 2010 at 6:24 pm

    [...] previous post i discussed “No Script” plugin for firefox which is a good remedy against click jacking . Today i ll share my views about other important features that firefox provides for our own [...]

Leave a Reply

Got computer/technical problems? Get FREE help from Technize Forums

Incoming search terms for the article:

ClickJacking script, clickjacking attempt, noscript clickjacking, hacking technique post 2010, hacking, clickjacking software, free download Clickjacking script, how to fix clickjacking virus, hot to remove clickjacking, facebook hacking techniques, have clickjacking on yahoo mail, hacking yahoo using clickjacking, firefox, hacking get other site script, firefox clickjacking virus removal, future hacking technique, free clickjacking software, how to remove clickjacking click jack virus clean, how to remove the clickjacking virus revomal, what is the purpose of clickjacking?, what is a clickjacking attempt, web 2 0 noscript warning, valid email hacking technique, technique for hacking pc, search clickjacking virus removal, script to hijack webcam, Remove clickjacking software, remove clickjacking, remove clickjacker, remove clickjack xp, reinstall send to compressed folder, permantly deleting memory in iphone, no script clickjacking warning from blogger, iphone Disk Redactor, facebook hacking technique with software, facebook hacking technique, facebook clickjacking script, clickjack webcam, click-jacking script, click jacking software, click jacking script download, click jacking remover, cara hack clickjacking, cache:XrU2C9fPBOQJ:www technize com/find-similar-images-–-image-search-engine/comment-page-1/pt/ achar fotos similares, cache:tQFTuB7pUeEJ:www technize com/find-similar-images-–-image-search-engine/fr/ meilleur moteur de recherche d images, cache:RpaMTNHGY2wJ:www technize com/beware-of-clickjacking-another-hacking-technique/ use latest hacking technec, cache:m-AoYTjBDOsJ:www technize com/find-similar-images-–-image-search-engine/ photo find internet same, cache:m-AoYTjBDOsJ:www technize com/find-similar-images-–-image-search-engine/ find the image on the internet, cache:dtpS6NTDZa8J:www technize com/find-similar-images-–-image-search-engine/comment-page-1/?cid=46706 image search same picture, Browser Clickjacking Removal, beware of security tip, 2010 clickjacking webcam, Clickjacking Attempt message, download clickjacking, Clickjacking: beware the click, clickjacking warning NoScript, clickjacking virus, clickjacking settings no script, clickjacking remover, clickjacking removal, clickjacking p0c, ClickJacking oversettelse, Clickjacking like script, clickjacking image, clickjacking HACK CODES, Clickjacking hack, clickjacking crack software, advanced hacking technique for gmail