1-2-3-Clickjacking
Yesterday I listened OWASP’s Podcast #1 and recall the conversation about (media buzzing) Clickjacking attacks, and I can’t agree more on a certain aspect of the conversation: attacks are becoming more simpler than ever. Just having a look at common attacks: SQL Injection attacks (if done manually) need a certain amount of SQL knowledge, XSS attacks require some Javascript knowledge, CSRF attacks require some knowledge on website functionality, while Clickjacking attacks require almost no skill.