Ars Technica

DOM-based Extension Clickjacking: Your Password Manager Data at Risk

Is clickjacking still an exploitable vulnerability nowadays? Many bug bounty programs have this vulnerability listed in the "out of scope" section, and in better cases they accept it but don't reward ...
Bleeping Computer

New DoubleClickjacking attack exploits double-clicks to hijack accounts

A new variation of clickjacking attacks called "DoubleClickjacking" lets attackers trick users into authorizing sensitive actions using double-clicks while bypassing existing protections against these ...
Computerworld

FAQ: Clickjacking — should you be worried?

Last week, a pair of security researchers spread the news that a new class of vulnerabilities, called “clickjacking,” puts users of every major browser at risk from possible attack. Robert Hansen, ...
TechSpot

LastPass, 1Password, and Bitwarden extensions are vulnerable to clickjacking attacks

Facepalm: Millions of users on several leading password manager platforms face heightened security risks due to unpatched clickjacking vulnerabilities, researchers warned at the recent DEF CON 33 ...
Dark Reading

Details of Clickjacking Attack Revealed With Online Spying Demo

A researcher has “hacked” the mysterious clickjacking attack and today posted a demonstration in his blog on how the Web-borne attack works. Details of the dangerous clickjacking attack have been ...
Arabian Post on MSN

SVG trickery exposes deeper clickjacking threat

A newly documented exploitation method using scalable vector graphics has intensified scrutiny of browser-level security after a security researcher demonstrated how attackers can transform ...