#dom-based-clickjacking
#dom-based-clickjacking

[ follow ]

Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page

Passwordstate 9.9 fixes an authentication bypass and adds protections against DOM-based extension clickjacking targeting its browser extension.

fromThe Hacker News

3 weeks ago

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

Popular password manager plugins for web browsers have been found susceptible to clickjacking security vulnerabilities that could be exploited to steal account credentials, two-factor authentication (2FA) codes, and credit card details under certain conditions. The technique has been dubbed Document Object Model ( DOM)-based extension clickjacking by independent security researcher Marek Tóth, who presented the findings at the DEF CON 33 security conference earlier this month.

Information security

[ Load more ]

#dom-based-clickjacking#dom-based-clickjacking

Click Studios Patches Passwordstate Authentication Bypass Vulnerability in Emergency Access Page

DOM-Based Extension Clickjacking Exposes Popular Password Managers to Credential and Data Theft

#dom-based-clickjacking
#dom-based-clickjacking