Tag Archives: exploits

Clickjacking

Today I learned a new term from the web security section – Clickjacking – which I would like to make you aware of.

To see it in action, please visit the blog post of Flash developer Guy Aharonovsky, where he demonstrates in a video how a user unintentionally changes his browser’s security settings while playing a JavaScript game. As a result the user ‘allows’ activation of his webcam and microphone without knowing about it.

The above mentioned exploit in the video has already been fixed by Adobe. But there are more ways to hijack your clicks. The clickjacking exploit opens a wide playingfield for the bad guys out there. Get more background info (in German) here.