Itc2009 Click Jacking

6
NEA-SEA ITC 2009 Click Jacking March 2009 ITC Jay Hall

TAGS:

Transcript of Itc2009 Click Jacking

Page 1: Itc2009 Click Jacking

NEA-SEA ITC 2009

Click JackingMarch 2009 ITCJay Hall

Page 2: Itc2009 Click Jacking

What is Click Jacking?

A method used by an attacker to hide a button, or link, on a legitimate page, using other web content to mask the page's context.

Using well placed graphics, the attacker may be able to persuade a victim to click where an attacker wants on the page.

This is also known as User-Interface (UI) redress and iFrame overlay.

Click Jacking is not dependent on Java.

Page 3: Itc2009 Click Jacking

Preventing Click Jacking

Website Owners Add JavaScript frame busting code to the website

to ensure none of the web pages can be framed by a malicious third party.

Important action buttons on the web site should require JavaScript to execute.

This helps prevent certain browser features that negate the solution.

Sensitive actions should be validated using an out of band communication channel.

Email or SMS.

Page 4: Itc2009 Click Jacking

Preventing Click Jacking

Users Make sure you logout of website when you are

done conducting business. Instal the NoScript Firefox plugin. Disable all plugins.

Page 5: Itc2009 Click Jacking

Questions

???????????????

Page 6: Itc2009 Click Jacking

The End


HYDRAULIC JACKING

HYDRAULIC JACKING

Jacking Pipes - Hobasturkey.hobas.com/.../1404_HOBAS_Jacking_Pipes_web.pdf · h Jacking Pipes Decades of ... Pipes. The first project using GRP jacking pipes and remote-controlled

Jacking Pipes - Hobasturkey.hobas.com/.../1404_HOBAS_Jacking_Pipes_web.pdf · h Jacking Pipes Decades of ... Pipes. The first project using GRP jacking pipes and remote-controlled

jacking pipe

jacking pipe

02 Hobas Jacking Pipes

02 Hobas Jacking Pipes

36600011 Tank Jacking

36600011 Tank Jacking

JACKING PIPE - t1.daumcdn.net

JACKING PIPE - t1.daumcdn.net

Blind XSS & Click Jacking

Blind XSS & Click Jacking

Box Jacking

Box Jacking

Brand jacking

Brand jacking

CSE 484 / CSE M 584 Computer Security: Lab 2 & Click Jacking

CSE 484 / CSE M 584 Computer Security: Lab 2 & Click Jacking

JACKING SERVICES - verwater.comverwater.com/sites/verwater.com/files/files/Verwater Jacking... · Tanks are modeled with FEM analysis to control each step in the jacking process.

JACKING SERVICES - verwater.comverwater.com/sites/verwater.com/files/files/Verwater Jacking... · Tanks are modeled with FEM analysis to control each step in the jacking process.

1203 Jacking E Web

1203 Jacking E Web

Juice Jacking 101

Juice Jacking 101

Jacking Aker

Jacking Aker

Jacking Methord

Jacking Methord

Jacking Frame Basket

Jacking Frame Basket

b767 Aircraft Jacking

b767 Aircraft Jacking

PPT_Trakindo_Lifting Jacking Blocking

PPT_Trakindo_Lifting Jacking Blocking

Bygging Infrastructure Pvt. Ltd. - Tank Jacking …...wide collection of Hydraulic Jacking Equipment. Our product range includes Tank Jacking Equipment, Automatic Girth Welding Machine

Bygging Infrastructure Pvt. Ltd. - Tank Jacking …...wide collection of Hydraulic Jacking Equipment. Our product range includes Tank Jacking Equipment, Automatic Girth Welding Machine

Jacking pipes€¦ ·  · 2018-01-25Contents Jacking pipes 1 The jacking technique (microtunnelling) 1 Benefits of pipe jacking 2 Technical 2 Safety 2 Economic 2 Environmental 2

Jacking pipes€¦ ·  · 2018-01-25Contents Jacking pipes 1 The jacking technique (microtunnelling) 1 Benefits of pipe jacking 2 Technical 2 Safety 2 Economic 2 Environmental 2