http://maestro-sec.com/blogs/2008/10/clickjacking/ ::Hack IT to Master IT:: Tue, 22 Nov 2011 09:18:56 +0000 hourly 1 http://wordpress.org/?v=3.3 http://maestro-sec.com/blogs/2008/10/clickjacking/comment-page-1/#comment-47 Clickjacking for spying? | Maestro Security Blogs Wed, 08 Oct 2008 17:16:35 +0000 http://maestro-sec.com/blogs/?p=119#comment-47 [...] we discussed an overview about click-jacking previously. This time on same lines, a researcher has given a PoC about how can clickjacking be used to hack [...] [...] we discussed an overview about click-jacking previously. This time on same lines, a researcher has given a PoC about how can clickjacking be used to hack [...]

]]> http://maestro-sec.com/blogs/2008/10/clickjacking/comment-page-1/#comment-44 w0lf Tue, 07 Oct 2008 07:16:06 +0000 http://maestro-sec.com/blogs/?p=119#comment-44 Yes..nice reward. But my lazy bones do not permit me from doing so. :P Yes..nice reward. But my lazy bones do not permit me from doing so.

]]> http://maestro-sec.com/blogs/2008/10/clickjacking/comment-page-1/#comment-43 Ne0 Tue, 07 Oct 2008 06:39:21 +0000 http://maestro-sec.com/blogs/?p=119#comment-43 Hmm... Smart !! very smart... nice reward if you get through !!! Hmm… Smart !! very smart… nice reward if you get through !!!

]]> http://maestro-sec.com/blogs/2008/10/clickjacking/comment-page-1/#comment-42 w0lf Tue, 07 Oct 2008 05:11:04 +0000 http://maestro-sec.com/blogs/?p=119#comment-42 Well if this attack can be used to generate good revenue then it can used. Well I can see a good point of using this attack, say , I may use this attack by social engineering visitors to click on some link saying get free T-shirts for early-birds - Click Here and beneath that button there will be the page containing link (on same x-y dimensions) to generate revenue like adsense etc. This is a feasible thing. Well there are people out there who can invest good amount of time to create a clickjacking attack page and transfer a bulk amount from victims bank account to their account which will be more than worth of their hard work ;) Well if this attack can be used to generate good revenue then it can used. Well I can see a good point of using this attack, say , I may use this attack by social engineering visitors to click on some link saying get free T-shirts for early-birds – Click Here and beneath that button there will be the page containing link (on same x-y dimensions) to generate revenue like adsense etc. This is a feasible thing. Well there are people out there who can invest good amount of time to create a clickjacking attack page and transfer a bulk amount from victims bank account to their account which will be more than worth of their hard work

]]> http://maestro-sec.com/blogs/2008/10/clickjacking/comment-page-1/#comment-41 Ne0 Tue, 07 Oct 2008 04:47:12 +0000 http://maestro-sec.com/blogs/?p=119#comment-41 Nice informative post w0lf ... But this attack requires too much of precision. Would launching such an attack be feasible ? Nice informative post w0lf … But this attack requires too much of precision. Would launching such an attack be feasible ?

]]>