In the digital age, where convenience and connectivity reign supreme, the internet has become an indispensable part of our daily lives.

However, with this increased reliance on the web comes a heightened risk of cyber threats that can compromise our personal and financial security.

The latest warning to hit the headlines is a sophisticated browser hack that's causing alarm across the globe. Our readers at the Seniors Discount Club need to be particularly vigilant about it.

Dubbed the 'double-clickjacking' attack, this new cyber threat is a stark reminder that no one is safe from the ingenuity of hackers, regardless of the browser they use.

Whether you're a fan of Chrome, Edge, Safari, or any other web client, a simple action as innocuous as a double-click could potentially lead to devastating consequences.

A new cyber threat called double-clickjacking has been revealed, affecting all major web browsers and bypassing current protections. Credit: Just_Super / iStock

The concept of clickjacking is not new. It's a cyber attack where users are tricked into clicking on something different from what they perceive, often leading to unauthorised actions or data breaches.

Traditional clickjacking might involve invisible overlays or deceptive web page elements that, when clicked, perform actions without the user's knowledge.

However, hackers have evolved their methods as browser developers have fortified their defences against such tactics.

Double-clickjacking is an advanced technique that exploits the timing between mouse clicks.

This attack can occur when a user is prompted to double-click on an element, such as a CAPTCHA.

Still, the attacker switches the context to a different window or action in the brief moment between clicks.

The danger of this new hack lies in its simplicity and effectiveness.

It bypasses clickjacking protections and can affect websites, cryptocurrency wallets, and smartphone interfaces.

The attack surface is vast, with potentially every website being vulnerable, and the only requirement for the hack to succeed is for the target to double-click.

The implications of falling victim to a double-clickjacking attack are severe.

Hackers can manipulate this technique to gain unauthorised access to accounts, change user settings, authorise applications with extensive privileges, and even initiate financial transactions.

The result could be anything from compromised personal data to drained bank accounts.

Security experts are raising the alarm about the evolution of hack attacks, which are becoming more adaptive and challenging to detect.

This creates a significant challenge for cybersecurity professionals, who must constantly monitor networks for suspicious activity to mitigate the risk of an attack.

Key Takeaways

• Paulos Yibelo has revealed a new cyber threat known as double-clickjacking, which affects all major web browsers and can bypass existing clickjacking protections.
• Double clickjacking relies on tricking users into double-clicking seemingly innocent UI elements like CAPTCHAs while hackers manipulate the action to authorise malicious operations.
• All websites are potentially vulnerable to this technique, leading to account takeovers, unauthorised application permissions, and even affecting devices like smartphones and cryptocurrency wallets.
• Cybersecurity experts urged vigilance and prompt response to this evolving threat, advising users to avoid double-clicking and for developers to address the vulnerability.

Have you encountered any suspicious online activity lately? Share your experiences in the comments below to help each other stay protected.

 

[Kman]

Is there any further information on this one? There must be some way that we can avoid it. Lots of businesses etc use CAPTCHA for verification purposes. This one rings alarm bells.

 

[Tigers]

Is there any further information on this one? There must be some way that we can avoid it. Lots of businesses etc use CAPTCHA for verification purposes. This one rings alarm bells.

WHAT THA. it MIGHT BE SAFER, if we go BACK TO SENDING & RECIEVING THE WRITTEN WORD, (LETTERS)

 

[Clancieblue]

 

[Johnnie boy]

I’ve managed to avoid them but of course I’m not invincible. Of particular concern I learned yesterday that my local (Bankwest) branch has closed. So who can I communicate with if I want advice about my accounts ???? I do not want to communicate with a machine. Most alarming that we are losing control of our own money and what can we do about it?????Open to suggestions

 

[Johnnie boy]

I’ve managed to avoid them but of course I’m not invincible. Of particular concern I learned yesterday that my local (Westpac)branch has closed. So who can I communicate with if I want advice about my accounts ???? I do not want to communicate with a machine. Most alarming that we are losing control of our own money and what can we do about it?????Open to suggestions

 

[Johnnie boy]

I’ve managed to avoid them but of course I’m not invincible. Of particular concern I learned yesterday that my local (Bankwest) branch has closed. So who can I communicate with if I want advice about my accounts ???? I do not want to communicate with a machine. Most alarming that we are losing control of our own money and what can we do about it?????Open to suggestions

Sorry the Bank is Westpac not Bankwest

 

[Rosi Gordon]

When reading replies on Facebook I see these messages all the time but never had a reason to do it and now definitely won't be.

 

[Johnnie boy]

When reading replies on Facebook I see these messages all the time but never had a reason to do it and now definitely won't be.

????? What are you talking about ?????

 

[Rosi Gordon]

????? What are you talking about ?????

Articles that have been posted with the 'i' on the top right hand side of the picture to get more information quite offen have in the comments section where it say you can double click to go to another site. Not at all tech savvy but did wonder why you should double click if the 'i' for information is already there.