HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 38 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Malwarearrow New phishing attack emerges -- Tabnabbing
EH-Net
May 24, 2013, 11:44:18 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: New phishing attack emerges -- Tabnabbing  (Read 7544 times)
0 Members and 1 Guest are viewing this topic.
Equix3n-
Sr. Member
****
Offline Offline

Posts: 386



View Profile
« on: May 25, 2010, 01:10:31 PM »
Aza Raskin, User Interface specialist and creative lead on Mozilla’s Firefox browser described a new type of phishing attack which he called "tabnabbing".

Tabnabbing exploits the fact that most users have multiple tabs open on their browser while browsing the internet. The attacker sends a link to a legitimate looking site. When the webpage detects that the user has moved to a new tab, the javascript code embedded in it 'changes' it to some login page. Unsuspecting users will most likely login to this fake page thinking they opened it and their account is compromised.

In his website, Aza Raskin has actually embedded such a script in this webpage
http://www.azarask.in/blog/post/a-new-type-of-phishing-attack/
Logged
former33t
Full Member
***
Offline Offline

Posts: 226


View Profile
« Reply #1 on: May 25, 2010, 10:17:22 PM »
That is pretty slick, but I don't regularly log into a form just because it is there.  The power of suggestion is strong, but not that strong (for me anyway).

There are a good number of users that will fall for that though.  Thanks for the heads up.
Logged
Certifications: CREA, MCSE: Security, CCNA, Security+, other junk
Data_Raid
Full Member
***
Offline Offline

Posts: 165



View Profile
« Reply #2 on: May 26, 2010, 03:54:08 AM »
Nice! Thanks for posting, that's pretty interesting
Logged
All men by nature desire knowledge.

Aristotle
clanggedin
Newbie
*
Offline Offline

Posts: 17


View Profile
« Reply #3 on: May 28, 2010, 12:08:11 AM »
WOW!!! That is amazing! I am impressed. I was almost tricked by it because I wanted to email my friend that link and I was just in gmail minutes before.
Logged
Manu Zacharia (-M-)
Sr. Member
****
Offline Offline

Posts: 393


c0c0n Hacking Conference - where hackers unite


View Profile WWW
« Reply #4 on: May 28, 2010, 02:26:47 AM »
Apart from FireFox, it works with IE8 too, just checked it Smiley
Logged
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)˛, C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n
clanggedin
Newbie
*
Offline Offline

Posts: 17


View Profile
« Reply #5 on: May 28, 2010, 09:22:02 AM »
It also works in the latest version of Chrome too.
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #6 on: May 28, 2010, 01:34:30 PM »
That definitely has some potential to pwn people, especially if well executed.   We've all seen sessions expiring in gmail, yahoo, etc, for no apparent reason.   I am also careful to check the URL and the certificate when logging in, but I am sure people will be easily fooled by this.
Logged
~~~~~~~~~~~~~~
Ketchup
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.066 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.