Story image

New exploit aimed at your browser's tabs

26 May 10

A new threat has been identified that allows identity thieves to exploit open, but not active, browser tabs while you're surfing the internet.

The process is known as 'tabnapping', and it means that hackers now have the ability to sneakily change open browser tabs to fool web users into giving up their passwords.

The attack still requires a traditional redirect trick to work however. Users are fooled into visiting a bogus site, and, once there, hackers are able to change an open browser tab to resemble the login page of other popular sites, thereby accessing personal login information.

The new deception was discovered by Mozilla creative head, Aza Raskin.

All the major browsers are vulnerable to the attack.

For a full rundown of how the scam works, go here.