Clickjacking Circumvented By Researchers at Top Websites

By Baselinemag  |  Posted 2010-05-28
New research has found a common defense used by websites to prevent clickjacking attacks can be broken.

According to researchers from Stanford University and Carnegie Mellon University, frame-busting isn't as effective at preventing clickjacking as hoped. An analysis of the Top 500 websites ranked by Alexa found all of the frame busting implementations could be circumvented. Some of the circumventions were browser-specific, while others worked across all browsers, the researchers found.