Comments on: New 0Day Browser Exploit: Clickjacking – OWASP AppSec NYC 2008

By: terkoz

terkoz — Mon, 11 May 2009 13:48:01 +0000

Clickjacking, simply put, is stealing mouse cursor clicks from users. In this type of attack, the malicious user is able to take control of the links that a user may connect to while they are within a malicious domain

By: The Silver Bullet Security Podcast » Blog Archive » Show 032 - An Interview with Jeremiah Grossman

Fri, 14 Nov 2008 02:17:56 +0000

[...] Adobe 0-day Browser Exploit [...]

By: Clickjacking Woes | Webmaster Share

Clickjacking Woes | Webmaster Share — Wed, 22 Oct 2008 03:26:25 +0000

[...] Clickjacking, simply put, is stealing mouse cursor clicks from users. In this type of attack, the malicious user is able to take control of the links that a user may connect to while they are within a malicious domain. [...]

By: Clickjacking Woes | VistaSpyware.com

Clickjacking Woes | VistaSpyware.com — Sat, 18 Oct 2008 06:02:22 +0000

By: Latest Antivirus Updates » Clickjacking Woes

Latest Antivirus Updates » Clickjacking Woes — Sat, 18 Oct 2008 04:26:25 +0000

By: Clickjacking Woes | TrendLabs | Malware Blog - by Trend Micro

Clickjacking Woes | TrendLabs | Malware Blog - by Trend Micro — Sat, 18 Oct 2008 04:15:38 +0000

By: Clickjacking: La amenaza fantasma « La noticia tecnológica de la semana

Clickjacking: La amenaza fantasma « La noticia tecnológica de la semana — Fri, 10 Oct 2008 22:21:26 +0000

[...] el 88 y tal como parece más lógico), aunque sí conocemos su forma de funcionamiento. En este post hay algunas especualaciones que pueden parecer más o menos lógicas sobre su funcionamiento, [...]

By: New browser exploit: Clickjacking [Security4all] [Belgian Security Blognetwork] | Small Business System

Wed, 01 Oct 2008 18:06:12 +0000

[...] But there is a small overview and explanation of the issue: In a nutshell, it’s when you visit a malicious website and the attacker is able to take control of the links that your browser visits. The problem affects all of the different browsers except something like lynx. The issue has nothing to do with JavaScript so turning JavaScript off in your browser will not help you. It’s a fundamental flaw with the way your browser works and cannot be fixed with a simple patch. With this exploit, once you’re on the malicious web page, the bad guy can make you click on any link, any button, or anything on the page without you even seeing it happening. “A normal user wouldn’t have any idea of what is going on. People in this audience may see something a little different from what they would expect and you would definitely see the results in the page’s source code.” Ebay, for example, would be vulnerable to this since you could embed javascript into the web page, although, javascript is not required to exploit this.(Source: webadminblog.com) [...]

By: B!n@ry-z0ne » أرشيف المدونة » Clickjacking Exploit Attack في جميع المتصفحات

Tue, 30 Sep 2008 01:58:36 +0000

[...] ذات صلة: الأول الثاني الثالث [...]

By: Steve T

Steve T — Sat, 27 Sep 2008 17:59:57 +0000

Sounds like a great way to rack up adwords, or other advertising, or traffic exchange clicks. Using this that way would not harm the users at all, it would just make money/gain traffic for the site owner. Still malicious, just not towards users.