Tab-jacking - Internet Threat
Tabjacking is a "new" form of Internet threat. Many modern Internet web browsers have a feature known as tabs, where you can open multiple web pages at a time. This has provided a way for "tabjackers" to send "new" malicious code into the browser.
Tabjacking refers to the hijacking or incident where an internet web browser tab falls under the control of an external party. The new tab is redirected to a webpage that an external party is supporting or marketing. The controller of the code can also bombard the user with annoying advertising popups, worms, trojans and other malware.
The Tabs Feature has been around since before Microsoft introduced Internet Explorer 7. Internet Explorer is not the only browser that has tabs which can also be found in Mozilla Firefox, and others. Opening more web pages under a single window makes it easier for users to navigate through the web. When multiple tabs are left open allows users to quickly switch between active tabs. This is also the source for bad guys to exploit.
Here is how Tabjacking works: Upon opening a tab the user thinks they are viewing a web site that they intended to view. After a certain amount of time the browser can tell that it is no longer the focus of the users attention. This is when the malicious code changes the name of the web page and also puts up a fake login or other malicious items that the bad guy wanted to exploit. The tricky part is that this malicious code will most probably be hidden among legitimate web content. Because of it being hidden in "legitimate" web content detection of the malicious code is difficult.
Internet surfers should be aware of what browser tabs they have open until "the experts" come-up with solutions and effective countermeasures.
