Find Us On Twitter
I came across this phishing scam tactic on a news board recently and thought it was quite interesting. Basically how it works is that criminals know that people browse the internet these days with multiple tabs open at the same time (yay for multitasking!). Many times people would have sensitive websites opened in their inactive tabs [bank website, personal email account (Gmail), or social networking site (Facebook)] while browsing other sites in other tabs. A person may lose track of the websites in each tab and become vulnerable when an inactive tab changes to a phishing site designed to look like one of their sensitive websites.
As a simple example, a person wanders onto a malicious site, he or she then decides to go to another tab to browse something else, in the background that malicious site turns into a fake Gmail site. When the user returns back to the other tab, he or she may not realize that the Gmail site in the tab isn’t a real Gmail site, and if the user is the type of person who traditionally has his or her Gmail up in an inactive tab while browsing, they may not have any reservation to retype their username/password into the fake Gmail site when prompted due to inactivity.
More about this phishing tactic and how to prevent it here.
Short proof-of-concept video.
This leads me to think, is it possible for one tab to interact with another tab? I don’t believe so, and I remember reading specifically that Chrome was developed in such a way that each tab is extremely independent from one another. A site can crash in one tab without taking down the whole browser. I could be mistaken on this. But if there’s a vulnerability where one tab can interact and steal data from another tab, that could be disastrous.
Categories:
Tags:
phishingHello. fantastic job. I did not imagine this. This is a remarkable story. Thanks!
As a Newbie, I am constantly searching online for articles that can benefit me. Thank you
I need to say, youve got one with the greatest blogs Ive noticed in a lengthy time. What I wouldnt give to have the ability to develop a weblog thats as fascinating as this. I guess Ill just have to keep reading yours and hope that one day I can write on a subject with as substantially expertise as youve got on this 1!
Im impressed, I have to say. Incredibly rarely do I come across a blog thats both informative and entertaining, and let me let you know, youve hit the nail on the head. Your blog is vital; the concern is something that not sufficient folks are talking intelligently about. Im definitely content that I stumbled across this in my search for something relating to this problem.
Thanks for the kind words!
This is a appealing article by the way. I am going to go ahead and save this article for my sister to read later on tomorrow. Keep up the superior work.
thanks for your thoughts on this, I felt a bit struck by this article. Thanks again!
Many thanks for the art, previously interesting and compelling. I found my way here through Google, I am going to return once more 
I can see that you are are genuinely passionate about this! I am trying to build my own website and youve helped me with some great information.
I´ve really enjoy reading this post. You use a lot of effort to writting it and that´s cool! Cheers!
Thanks for the article, it was interesting and compelling. I found my way here through Google, I will come back another time
You should take part in a contest for one of the best blogs on the web. I will recommend this site!
Awesome website. Bookmarked it and shown my friends!
I seriously appreciate your posts. Many thanks
Pretty nice post. I just showed this to my colleaguewho was just talking about this.
This really solved my problem, thank you!