New Attack Technique Makes Phishing Easy

A new attack technique takes advantage of open browser tabs to launch phishing sites without the user’s knowledge. The attack can be carried out in Firefox, Internet Explorer and other major browsers.

The attack, dubbed tabnapping, was uncovered by Aza Raskin, creative lead for Mozilla Firefox, and affects all the major browsers on Windows and Mac OS X.

Raskin’s proof-of-concept attack takes advantage of users who keep multiple tabs open. If the user visits a malicious site or one that has been compromised, the attacker can silently change the contents and label of an open, inactive tab to resemble the log-in screen of another site, such as Google Gmail.

READ MORE >>

CIO Insight Staff
CIO Insight Staff
CIO Insight offers thought leadership and best practices in the IT security and management industry while providing expert recommendations on software solutions for IT leaders. It is the trusted resource for security professionals who need network monitoring technology and solutions to maintain regulatory compliance for their teams and organizations.

Get the Free Newsletter!

Subscribe to Daily Tech Insider for top news, trends, and analysis.

Latest Articles