A solution for the automated detection of clickjacking attacks

Balduzzi, Marco; Egele, Manuel; Kirda, Engin; Balzarotti, Davide; Kruegel, Christopher

doi:10.1145/1755688.1755706

Cited by 55 publications

(37 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We argue that, even though our crawler may have charged some advertisers 9 for the duration of our crawling experiment, this was probably beneficial for the Web at large since we absorbed the ads that would have otherwise victimized real users. Moreover, our crawling methodology is in line with previous studies that have seeked to understand online ads [15], [17].…”

Section: E Exposing Users To Malware Scam and Adult Websitesmentioning

confidence: 62%

It's Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services

Rafique

Goethem

Joosen

et al. 2016

Proceedings 2016 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Abstract-Recent years have seen extensive growth of services enabling free broadcasts of live streams on the Web. Free live streaming (FLIS) services attract millions of viewers and make heavy use of deceptive advertisements. Despite the immense popularity of these services, little is known about the parties that facilitate it and maintain webpages to index links for free viewership.This paper presents a comprehensive analysis of the FLIS ecosystem by mapping all parties involved in the anonymous broadcast of live streams, discovering their modus operandi, and quantifying the consequences for common Internet users who utilize these services. We develop an infrastructure that enables us to perform more than 850,000 visits by identifying 5,685 free live streaming domains, and analyze more than 1 Terabyte of traffic to map the parties that constitute the FLIS ecosystem. On the one hand, our analysis reveals that users of FLIS websites are generally exposed to deceptive advertisements, malware, malicious browser extensions, and fraudulent scams. On the other hand, we find that FLIS parties are often reported for copyright violations and host their infrastructure predominantly in Europe and Belize. At the same time, we encounter substandard advertisement set-ups by the FLIS parties, along with potential trademark infringements through the abuse of domain names and logos of popular TV channels.Given the magnitude of the discovered abuse, we engineer features that characterize FLIS pages and build a classifier to identify FLIS pages with high accuracy and low false positives, in an effort to help human analysts identify malicious services and, whenever appropriate, initiate content-takedown requests.

show abstract

Section: E Exposing Users To Malware Scam and Adult Websitesmentioning

confidence: 62%

It's Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services

Rafique

Goethem

Joosen

et al. 2016

Proceedings 2016 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…During our literature review, we realized that Balduzzi [10] gave out the best mitigation results and was also the most cited and authoritative result. A major limitation of almost all of the existing techniques is that they try to work before the user has clicked the clickjacked link and offer no support for the false negatives that they can't detect.…”

Section: Introductionmentioning

confidence: 88%

Clicksafe: Providing Security against Clickjacking Attacks

Shamsi

Hameed

Rahman

et al. 2014

2014 IEEE 15th International Symposium on High-Assurance Systems Engineering

View full text Add to dashboard Cite

Clickjacking is an act of hijacking user clicks in order to perform undesired actions which are beneficial for the attacker. We propose Clicksafe, a browser-based tool to provide increased security and reliability against clickjacking attacks. Clicksafe is based on three major components. The detection unit detects malicious components in a webpage that redirect users to external links. The mitigation unit provides interception of user clicks and give educated warnings to users who can then choose to continue or not. Clicksafe also incorporate a feedback unit which records the user's actions, converts them into ratings and allows future interactions to be more informed. Clicksafe is predominant from other similar tools as the detection and mitigation is based on a comprehensive framework which utilizes detection of malicious web components and incorporating user feedback. We explain the mechanism of clicksafe, describes its performance, and highlights its potential in providing safety against click jacking to a large number of users.

show abstract

“…In [6], authors proposed solution for automated detection of Clickjacking attack. The attacker tries to steal the victim clicks to do an unintended action that provides the benefit to an attacker in form of initiating an online money transaction.…”

Section: B Automated Detection Of Clickjacking Attacksmentioning

confidence: 99%

On Detection and Prevention of Clickjacking Attack for OSNs

Rehman

Khan

Saqib

et al. 2013

2013 11th International Conference on Frontiers of Information Technology

View full text Add to dashboard Cite

Clickjacking attacks are the emerging threats to websites, especially to online social networks (OSNs). In this paper, we describe some new attacks to online websites. The new Clickjacking attacks cause serious damage to users by stealing their personal credentials or by sharing their personal information on social networks bringing moral degradation to them. The attacker applications are hidden behind the sensitive user interface to steal the clicks of the user and use them for the illegal purposes. To detect and prevent Clickjacking attacks, we propose a browser-based solution referred to as Cursor Spoofing and Clickjacking Prevention (CSCP). CSCP ensures protection Cursor spoofing attack with high effectiveness and also the Likejacking attacks, other variation of Clickjacking attacks which associate malicious code to Facebook Like buttons. We have conducted our studies on 442 participants to evaluate the effectiveness of our attacks and also defenses. Results show that our attack success rate falls between 76% and 78%.

show abstract

A solution for the automated detection of clickjacking attacks

Cited by 55 publications

References 12 publications

It's Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services

It's Free for a Reason: Exploring the Ecosystem of Free Live Streaming Services

Clicksafe: Providing Security against Clickjacking Attacks

On Detection and Prevention of Clickjacking Attack for OSNs

Contact Info

Product

Resources

About