New style of attack – Tabnapping

Aza Raskin describes a new style of attack

If you also click on his link, you will see it in action.

The initial Aza Raskin page:   (I am copying and pasting the screenshots here)

azaraskin

 

Once you click on a page it changes your tab to a “Gmail tab” favicon (the little icon on the tab) by itself (after 2-3 sec)

gmail tab

 

So the thing is the second Gmail tab is now on the hacker website. If you enter gmail userid and password – they have it now.

 

In fact just set up Tw0factor Authentication(2FA) on Gmail now.