1.

Solve : How to foil Web browser 'tabnapping'?

Answer»

A new, incredibly sneaky identity-theft tactic SURFACED earlier this week when Mozilla's Aza Raskin, the creative lead of Firefox, unveiled what's become known as "tabnapping."

Stated simply, tabnapping -- from the combination of "tab" and "kidnapping" -- could be used by clever phishers to dupe users into giving up passwords by secretly changing already-open browser tabs. All of the MAJOR browsers on Windows and MAC OS X are vulnerable to the attack.

Because most people keep multiple tabs open, OFTEN for long periods, and because they trust that the contents and label of a tab are immutable, tabnapping could become the next big thing in identity theft.

LinkNobody is actually doing this in the wild. A proof-of-concept has been demonstrated by some Mozilla people. From TFA:

Quote

Tabnapping isn't in ACTIVE circulation at the moment

In Firefox, NoScript is believed to be an effective defence, if it ever gets widespread.


Discussion

No Comment Found

Related InterviewSolutions