Google Chrome users exposed to a new form of browser cyberattack

browser users Google Chrome are exposed to a ‘browser-in-the-browser’ or BitB (browser-in-the-browser) attack when attempting to log in to a web page from a Google, Twitter o Facebook among others

The user of the Google browser who wants to save time when logging into a website using his Gmail, Facebook or Twitter account, may find himself before a pop-up window (or ‘pop-up’) very similar to the real one that give personal data to a hacker, not a trusted site through the technique known as ‘phishing’.

According to the Android Police website, which in turn echoes the information published in The Register, the finding has been discovered by a researcher who, under the username mr.d0x and after asking about possible ways to attack the browser, has found a potential weakness of it and created a series of templates to do it that he has subsequently published on Github.

These templates not only allow you to recreate a login popup, but also customize the url of it and thus complicate the task of verifying its veracity for the user, as he told Bleeping computer.

In these cases, users are recommended to make sure in advance of where they are accessing and to whom they are giving their personal data. Furthermore, it is possible to enable two-factor authentication to create an extra barrier of protection.

By Editor

Leave a Reply