clickjacking

Clickjacking: Understanding How Advertisers Manipulate Your Browser

Introduction

Clickjacking has become an increasingly prevalent phenomenon in online advertising, particularly for websites targeting users with JavaScript or older browsers. While this practice was once a concern due to the reliance of these browsers on server-side processing, modern browsers like Chrome and Safari have largely removed this dependency. However, despite this progress, clickjacking is still a significant issue, especially when it happens after switching from one browser to another, as some users may not fully understand how new browsers work or how their old ones can be exploited.

In this article, we'll explore the concept of clickjacking, its technical underpinnings, common techniques used by advertisers, and ways to mitigate these risks.

Technical Explanation

Clickjacking relies on browser plug-ins, extensions, and plug-in mechanisms to manipulate user experience. The goal is to enhance the ad display experience by showing more targeted content. Here are some key components:

Browser Plug-Ins and Extensions

  1. Ad Interceptor Plug-In: Used in Chrome and Safari, this plugin intercepts user actions on websites and redirects them back to the original page if they've performed certain tasks (e.g., made a purchase or clicked a link). This creates a ripple effect that shows more ads.

  2. SnifflySee Plug-in: A popular browser extension that intercepts information flows and displays additional content based on user behavior. It can be used in various browsers, including Chrome, Firefox, and Safari.

  3. Buffer.js Plug-Ins: Used by websites like Google Ads to manipulate JavaScript when users interact with the page, such as clicking images or links.

  4. Ad Interceptor Plug-In for Firefox: A separate extension that allows users to redirect non-ad content back to a main ad page after making purchases.

Plug-in Mechanisms

Clickjacking works on plug-in mechanisms where browsers intercept information flows and manipulate user experiences in real-time. These mechanisms include:

  1. Information Flows Monitoring: Browsers track various pieces of user data (e.g., IP addresses, cookies) to determine how a user's actions relate to the content being served.

  2. User Activity Detection: Plug-in mechanisms detect patterns in user actions that correlate with specific websites or pages. This allows the plug-in to redirect non-ad content back to a main page where ads are displayed.

  3. Information Interception: Plug-ins intercept and store information flows that may interfere with browser functionality, often by modifying server-side processes.

Code Examples

Here’s an example of how clickjacking can be implemented in a simple HTML file using the Buffer.js plug-in:

<!DOCTYPE html>
<html>
<head>
    <script src="https://unpkg.com  bufferjs@1.7.3/dist/black.js"></script>
</head>
<body>
    <!-- Clickjacking Example -->
    <script>
        // Configure the plug-in
        document.addEventListener('DOMContentLoaded', function() {
            new Buffer.js Plug-In({
                name: 'Clickjacking',
                description: 'A JavaScript plug-in that manipulates information flows when user actions occur'
            });
        });
    </script>
</body>
</html>

In this example, the Clickjacking extension intercepts and stores information flows during user interactions. When a non-ad content page is accessed through an ad link or purchase button, the extension redirects the browser back to the main ad page.

Defense or Mitigation Techniques

  1. Use of Modern Browsers: Transition from older browsers like Chrome 30 or Safari to modern browsers like Chrome 85+ for better support and improvements in clickjacking protection.

  2. Browsing History and Tracking: Use tools like SnifflySee (https://www.snifflysee.com/) or AdGuard (https://www.adguard.com/) to track browsing history and prevent the interception of relevant information flows.

  3. Browser Extensions: Install browser extensions designed specifically for clickingjacking, such as Buffer.js Plug-in, SnifflySee Plug-in, or Ad Interceptor Plug-ins.

  4. User Education: Educate users about important websites and their respective ad policies to reduce reliance on clickjacking.

  5. Monitoring Tools: Use tools like SnifflySee (https://www.snifflysee.com/) or AdGuard (https://www.adguard.com/) to monitor browser extensions for potential clickjacking-related issues in the near future.

Conclusion

Clickjacking has become a significant concern in online advertising, especially with the rise of modern browsers and plug-in mechanisms. While some users may not fully understand how these technologies work, it's important to recognize the risks associated with clickjacking and implement measures to protect against it. By using modern browsers, installing browser extensions, and employing monitoring tools, you can reduce your exposure to clickjacking-related issues in a safer manner.

As of now, clickjacking is less prevalent than ever before due to browser updates and improvements in security measures. However, it's crucial to stay vigilant and implement the techniques discussed to mitigate risks effectively.