Tabnabbing Poses a New and Significant Security Threat

by | Sep 23, 2010 | Articles

A new threat to computer security has been discovered in which tab browsing vulnerabilities are exploited to fool users into divulging passwords and other sensitive information.

Dubbed as “tabnabbing”, the vulnerability was discovered by Aza Raskin, the creative lead for the Mozilla’s Firefox browser and co-founder of Songza, a music search engine and jukebox. Tabnabbing fools users into entering passwords and other sensitive information when an unselected tab in your browser appears to transform itself into a lookalike for a familiar website. You are then prompted you to re-enter a username and password, which in turn passes that information along to the hacker. Incidentally, Raskin’s blog post on the topic (http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/) demonstrates how the website can “change” into a lookalike.

Both Mozilla Firefox and Google are vulnerable to this type of attack, which is classified as “phishing” – a scam where users are tricked into entering login information into fraudulent websites masquerading as legitimate ones. Fortunately, there have been no instances – yet – in which tabnabbing has been used in phishing attacks, but Raskin says that he is “aware of other researchers and toolkits extending and expanding tabnabbing”. However, it’s very likely that phishers will be looking for ways to exploit tabnabbing soon, and are currently no fixes or patches released.

One way you can protect yourself from tabnabbing is to make sure that your browser has the proper anti-phishing features installed. It’s also important that your website is updated with the latest security features since many phishers like to exploit websites running old version web software, which they use to host phishing sites.

If you want to know more about keeping your system secure from the latest malware and security threats, please don’t hesitate to get in touch with us and we’ll be happy to sit down and discuss security options that fit your needs and requirements.

Published with permission from TechAdvisory.org. Source.

Related Posts

5 Easy Ways to Ensure Customer Satisfaction

5 Easy Ways to Ensure Customer Satisfaction

When it comes to running a business, popular wisdom says that “the customer is always right.” While this may not hold true in every case, the idea behind it endures.  The customer may not always right, but their satisfaction is necessary for your success.  When...

7 Things to Look for in a Virtual Assistant

7 Things to Look for in a Virtual Assistant

Your busy schedule may have you thinking about hiring an assistant. A virtual assistant is a cost-effective and efficient option to consider. Since you don’t have to provide office space, it’s cheaper than hiring someone on-site. Use this guide as you search for the...

Technology Trends: What to Expect in 2017

Technology Trends: What to Expect in 2017

A new year always brings new predictions for what will be trending and what we can all look forward to in the news, politics, entertainment, and more. In the world of technology, innovations and advancements are a fast, steady stream as developers make everything...

FIND OUT WHAT YOUR BUSINESS SHOULD EXPECT TO PAY
FOR HOUSTON TECH SUPPORT

Give us a call and discover how great local IT services and computer support can be!