Sagi kahalany the art of clickjacking

1,105 views

Published on

0 Comments
1 Like
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total views
1,105
On SlideShare
0
From Embeds
0
Number of Embeds
13
Actions
Shares
0
Downloads
0
Comments
0
Likes
1
Embeds 0
No embeds

No notes for slide

Sagi kahalany the art of clickjacking

  1. 1. The Art ofClickjackingBy Sagi Kahalany | www.black-jack.co.il
  2. 2. What’s Clickjacking?
  3. 3. “Tricking a web-userinto clicking on somethingdifferent to what he / she meant”
  4. 4. And it Exploits…Social platforms (Fb, Twitter, G-plus etc)PPC – based platforms (Banners, Adsense, AffiliateNetworks)Computers, Browsers etc. to download malicious files, apps,software.And probably more.
  5. 5. With Clickjacking you can…Get more facebook fans/likes, twitter followers, google pluses,youtube subscribers and more.Make more by improving CTR of CPC-based platforms, i.e.generate more banner clicksForce web-users to download malicious files, apps, softwareTake over the world
  6. 6. Facebook Like Manipulation (1):Get as many Facebook-fanpage likes as possible.
  7. 7. Facebook Like Manipulation (2): Use the facebook like trigger to spread the rumor.Force users to share your urls (aff, malicious, files)
  8. 8. Facebook Like Manipulation (3):Convert your Facebook like button to an innocent banner
  9. 9. Google Plus Manipulation:Rank your Youtube videos shortly in Google Serps
  10. 10. Google Adsense Manipulation:Generate more Adsense ads’ clicks, unconsciously
  11. 11. Looks cool. What about live examples?Take a Look: Google Adsense Exploit: DemoMouse-cursor Overall Exploit: DemoFacebook-like Trapped Banner: DemoFake Cursor Exploit: Demo
  12. 12. Spooky… How can we avoid getting clickjacked?You should… Watch Out Your Clicks
  13. 13. Thanks For Listening By Sagi Kahalany | www.black-jack.co.il

×