New « DoubleClickjacking » Exploit Bypasses Clickjacking Protections on Major Websites
,
Threat hunters have disclosed a new « widespread timing-based vulnerability class » that leverages a double-click sequence to facilitate clickjacking attacks and account takeovers in almost all major websites.
The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo.
« Instead of relying on a single click, it takes advantage of a double-click sequence, » Yibelo said.
The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo.
« Instead of relying on a single click, it takes advantage of a double-click sequence, » Yibelo said.
,
Threat hunters have disclosed a new « widespread timing-based vulnerability class » that leverages a double-click sequence to facilitate clickjacking attacks and account takeovers in almost all major websites.
The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo.
« Instead of relying on a single click, it takes advantage of a double-click sequence, » Yibelo said.
The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo.
« Instead of relying on a single click, it takes advantage of a double-click sequence, » Yibelo said.
, ,
https://thehackernews.com/2025/01/new-doubleclickjacking-exploit-bypasses.html