Seems like there’s a new type of browser exploit that can cause problems to users out there. It’s called Clickjacking and here’s how it’s described:
In a nutshell, it’s when you visit a malicious website and the attacker is able to take control of the links that your browser visits. The problem affects all of the different browsers except something like lynx. The issue has nothing to do with JavaScript so turning JavaScript off in your browser will not help you. It’s a fundamental flaw with the way your browser works and cannot be fixed with a simple patch. With this exploit, once you’re on the malicious web page, the bad guy can make you click on any link, any button, or anything on the page without you even seeing it happening.
There’s a little more information about this on the Web Admin blog but details are still a bit sketchy. The biggest problem is that it seems to effect everyone using a browser, regardless if they’re using Firefox, IE or Chrome and whether they’re connected by dial-up, ADSL or satellite internet provider.
Hope this doesn’t cause too much consternation, because it seems like it’s not going to be trivial to fix this security hole.
HoundsGood on September 25th, 2008
1
That’s terrifying…
Hellan on September 26th, 2008
2
That is very scary
Holly on September 26th, 2008
3
That is crazy and a very scary thing to have to worry about.
Stomphoof on September 26th, 2008
4
Easiest way to avoid this is to avoid those scary sites. I never go to a site unless I am sure of where I am going.
But this is a crazy thing.
windyridge on September 26th, 2008
5
Hmmm, not sure I like that very much! So what’;s a browser to do?
Christina thecoffeelady on September 26th, 2008
6
Jeeze…. it seems like there is always something! What’s next?
Hollyj on September 26th, 2008
7
When I first got online, nearly 10 years ago, I’d go to every website I could find without hesitation. That was a lesson learned the hard way! Today I’m MUCH more cautious and rarely go to random websites! Yes, computers cost much less now than they did 10 years ago, but I’m also much more broke than I was 10 years ago too….LOL! It’s just sad that people have to put so much time into doing something that’s so deliberately malicious!
nhuong on September 26th, 2008
8
I tell everyone I know to be very careful when they are browsing the internet. It is not a safe place, unless you go to the usual site like amazon.com or checking your gmail. When you are searching through the web, it starts to get dangerous. Especially if you have alot of important files on your computers. I’ll rather be safe then sorry.
Breezie on September 26th, 2008
9
I tend not to be a worrier, I deal with things as they happen. And as its already been mentioned, there is always something new out there that is a threat to anyone online.
mistipurple on September 26th, 2008
10
I get a little paranoid when my computer acts up.
Ferox on September 27th, 2008
11
But how does it benefit them? It doesn’t open the pages on your screen does it? So are they using it to make money through pay-per-click ads?
Dennis Edell on September 27th, 2008
12
An ouchy for stumblers ain’t it…
fragileheart on September 27th, 2008
13
Wow that is pretty scary… why are some people so evil?
Katrin on October 1st, 2008
14
Now,that is really scary. But, really, i don’t think it is possible just without any human interaction. That could lead to a lot of big problems and issues. I really hope that this is just a rumor.
Clickjacking here’s how it works | Ugh!!'s Greymatter Honeypot on October 8th, 2008
15
[...] posted before about Clickjacking and how scary this is for most Internet users, regardless of which browser you’re using or [...]