\n
![\"\"](\"https:\/\/www.mattiasgeniar.be\/wp-content\/uploads\/2008\/11\/clickjacking.gif\")
<\/p>\n<\/p>\n
<\/p>\n
Image Source<\/strong>: https:\/\/mattiasgeniar.be\/2008\/11\/27\/clickjacking-shere-brilliance\/<\/p>\n <\/p>\n <\/p>\n <\/p>\n <\/p>\n Attack Example:<\/strong> <\/p>\n <\/p>\n Prevention: <\/strong><\/p>\n 1.<\/strong>No Script: <\/strong>This is the best prevention against Click jacking. It is a Firefox add-on and prevents users from clicking invisible click.<\/p>\n 2. <\/strong>Upgrade to latest Flash Player<\/p>\n 3. <\/strong>Edit Your Flash Settings by Right Click on flash Player —>Global Settings—>Select Always Deny option<\/p>\n <\/strong><\/p>\n <\/strong> <\/strong><\/p>\n","protected":false},"excerpt":{"rendered":" Click jacking is used by an attacker to collect information from user’s clicks. The attacker can do any type of things by launching this type of attack for example taking control of users microphone, webcam, adjusting the user’s computer settings, sending the user to Web sites that might have malicious code.<\/p>\n","protected":false},"author":19,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[109],"tags":[211],"class_list":["post-2080","post","type-post","status-publish","format-standard","hentry","category-website-security","tag-clickjacking"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9AH7Q-xy","_links":{"self":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2080","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/users\/19"}],"replies":[{"embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/comments?post=2080"}],"version-history":[{"count":0,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/posts\/2080\/revisions"}],"wp:attachment":[{"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/media?parent=2080"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/categories?post=2080"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/qadit.com\/blog\/wp-json\/wp\/v2\/tags?post=2080"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nThe user receives an email with a link to a video about a news item, but another valid page, say a Friend Request page, can be “hidden” on top or underneath the “PLAY” button of the news video. The user tries to “play” the video but actually “Accepts” the Friend Request, in the similar way user name and password of online banking account or E-mail can be got.<\/p>\n