Xopus

Main Menu

  • Schemas
  • CSS
  • Chrome
  • Firefox
  • Fund

Xopus

Header Banner

Xopus

  • Schemas
  • CSS
  • Chrome
  • Firefox
  • Fund
Chrome
Home›Chrome›Now it’s easier for scammers to trick you with fake Chrome windows

Now it’s easier for scammers to trick you with fake Chrome windows

By Warren B. Obrien
March 20, 2022
0
0

If you are particularly suspicious, you may spot a fake browser window designed to trick you into thinking this is the login page you need. The page might not load properly, or the graphics might look subtly altered – or the URL might look wrong, which should immediately flag anything suspicious. Unfortunately, the URL-related tips to avoid being phished may not be as solid as they used to be. A researcher recently developed a new form of rendering pop-up login windows that could easily trick security-conscious users into believing they are giving their private data to a legitimate site.

It’s called the browser-in-a-browser (BitB) attack – and the Register reports that it started when a researcher wondered if it was possible to make the security tip untrustworthy. generally solid of just “checking the URL”. For Chrome users, the answer to this question is yes. The problem can occur when you connect to anything using security protocols that offer Google, Microsoft, or Apple authentication through pop-up windows. These little windows are ubiquitous these days, and anyone who even thinks to check the links in the address bar will notice if it doesn’t look legit.

ANDROIDPOLICE VIDEO OF THE DAY

The researcher who illustrated how to build a phishing lure with BitB told Bleeping Computer that the patterns used to perform a BitB attack can create Chrome windows that look like completely normal logins, including URLs. This is the big advantage of this method and it is likely to make phishing too easy for someone who wants to do it. But there are tools around it, including password managers like LastPass, which won’t autofill login data because BitB doesn’t render real forms. Additionally, a phishing victim should track whatever attracts them to the malicious site in the first place. If you want to make sure that a stealthy BitB attack doesn’t trick you, take a moment and think before you try to follow unexpected or unsolicited links found in emails and text messages.



paranoid-android-hero-sapphire

Paranoid Android Sapphire’s first beta is here

Read more


About the Author

Steve Huff
(75 articles published)

Steve is the weekend news editor for Android Police. He was previously assistant digital editor at Maxim magazine and has written for Inside Hook, Observer and New York Mag. He is the author of two official books on AMC’s “Breaking Bad” prequel, “Better Call Saul.”

More Steve Huff

Related posts:

  1. New Chromebook Perk Gives 50% Off Stadia Premiere Edition Bundle in UK
  2. 7 compelling Google Chrome 90 features that improve your browsing
  3. Top 10 best space pens with chrome clips 2021 – Bestgamingpro
  4. Google Chrome will soon load pages faster on Windows, Linux and macOS

Recent Posts

  • Google Chrome adds virtual credit card numbers to protect your real ones – TechCrunch
  • How to take screenshots using the built-in screenshot tool in Mozilla Firefox on Windows 11 2022
  • Three Bard Faculty Pen Reviews for Artforum May 2022 Edition
  • 10 CSS background templates you can use on your website
  • Automotive Chromium Market Size and Overview 2022-2030 | Key Players – HELLA KGaA Hueck, Thule Group AB, Lund International, Covercraft Industries, Pep Boys – Manny

Archives

  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021

Categories

  • Chrome
  • CSS
  • Firefox
  • Fund
  • Schemas
  • Terms and Conditions
  • Privacy Policy