dom-based-extension-clickjacking-exposes-popular-password-managers-to-credential-and-data-theft

Widespread password management extensions for web browsers have been discovered to be vulnerable to clickjacking security flaws, which could be leveraged to capture account login information, two-factor authentication (2FA) tokens, and credit card information under specific circumstances.

This method has been termed Document Object Model (DOM)-based extension clickjacking by independent cybersecurity investigator Marek Tóth.


Leave a Reply

Your email address will not be published. Required fields are marked *

Share This