A newly discovered technique, dubbed DOM-based extension clickjacking, has raised serious concerns about the security of browser-based password managers. Despite their role in protecting sensitive information, such as login credentials, credit card data, and TOTP codes (Time-based One-Time Passwords), this attack demonstrates how a single deceptive click can result in total data compromise.
First seen on thecyberexpress.com
Jump to article: thecyberexpress.com/dom%e2%80%91based-extension-clickjacking/
