Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

The BITB attack makes phishing almost undetectable


By MYBRANDBOOK


The BITB attack makes phishing almost undetectable

An unfamiliar phishing technique called browser-in-the-browser (BitB) attack can be exploited to imitate a browser window within the browser in order to trick a legitimate domain, thereby making it possible to stage convincing phishing attacks.

 

In early 2020, a campaign that leveraged the BitB trick to siphon credentials for video game digital distribution service Steam by means of fake Counter-Strike: Global Offensive websites was discovered.

 

According to penetration testers and security researchers, the method takes advantage of third-party single sign-on (SSO) options embedded on websites such as "Sign in with Google" (or Facebook, Apple, or Microsoft).

 

While the default behavior is to be greeted by a pop-up window to complete the authentication process when a user attempts to sign in via these methods, the BitB attack aims to replicate this entire process using a mix of HTML and CSS code to create an entirely fabricated browser window.

 

Potential victims need to be redirected to a phishing domain that can display such a fake authentication window for credential harvesting, while this method significantly makes it easier to mount effective social engineering campaigns.

 

Normally, the measures taken by a user to detect a phishing site include checking to see if the URL is legitimate, whether the website is using HTTPS, and whether there is any kind of homograph in the domain, among others. In this case, everything looks fine as the domain is steamcommunity[.]com, which is legitimate and is using HTTPS. But when it is tried to drag this prompt from the currently used window, it disappears beyond the edge of the window as it is not a legitimate browser pop-up and is created using HTML in the current window.
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Digital Strategies Focuses On Technology To Improve Business Performance
Modernize the IT Strategy To Navigate COVID-19 and Beyond
India to be the top destination for companies moving out of China
The Changing Face of Cybercrime Amidst Global Pandemic
Urgency In Refuelling Digital Transformation For Customizing Needs
 INTERVIEWS  Placeholder image
Autodesk continually pushing the boundaries in the Design and

Autodesk continually pushing the boundaries in the Design and

Alpha Max offers high end solutions in the network space to en

Alpha Max offers high end solutions in the network space to en

The vision at Alpha Max is to attain quality as the trademark and create a

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando stands out in the DPU (Data Processing Unit) market with its u
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
DIGISOL SYSTEMS LTD.

DIGISOL SYSTEMS LTD.


BEETEL TELETECH LTD.

BEETEL TELETECH LTD.


BPE INDIA PVT. LTD.

BPE INDIA PVT. LTD.


INFOSYS TECHNOLOGIES PVT. LTD.

INFOSYS TECHNOLOGIES PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

HARNESSING THE POWER OF BIG DATA TO GAIN VALUABLE INSIGHTS

A Technology certainly drives innovation and busin...

AI AND DATA ANALYTICS REVOLUTIONIZING HEALTHCARE SERVICES

...

GAINING CUSTOMERS’ TRUST IS ESSENTIAL FOR SMOOTH OMNICHANNEL INTERACTIONS

In the fiscal year 2024-25, our organization has i...

 ICONS OF INDIA  Placeholder image

Icons Of India : PRATIVA MOHAPATRA

Prativa is a transformational leader with an incredible breadth of exp...

ICONS OF INDIA : SANTHOSH VISWANATHAN

Santhosh Viswanathan is the the Vice President and Managing Director f...

ICONS OF INDIA : VINAY SINHA

Vinay Sinha is the Managing Director of Sales for the India Mega Regio...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

"We will either find a way or make one"

A provider of high-quality IT products and services, Bluecom Infotech caters t...

"Tech Data's Solution-Centric Methodology and Consistent Communication: Enhancing Customer Experience Across All Touchpoints"

Tech Data’s unique value proposition is its solutions aggregation and orches...

Innovation, Technology and Partnerships Continue To Be The Cornerstone Of Growth

IT distribution is undergoing a significant transformation. As technology evol...

 PSU  Placeholder image

NPCI - National Payments Corporation of India  

NPCI is an umbrella organization for operating retail payments and set...

NSE - National Stock Exchange  

NSE is the leading stock exchange in India....

C-DOT - Center of Development of Telematics  

India’s premier research and development center focused on telecommu...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

HEWLETT PACKARD ENTERPRISE COMPANY (HPE)

HPE is an edge-to-cloud company with offerings spanning Cloud Services, Comput...

Most Trusted Brands 2024 : Salesforce Inc.  

Salesforce prioritizes customer success and satisfaction, focusing on building...

Most Trusted Brands 2024: Apple India Pvt. Ltd.

five decades after its founding, Apple has redefined modern computing, emphasi...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - AJAY BANGA, President - World Bank

Ajay Banga is an Indian-born American business executive who currently...

Indian Tech Talent Excelling The Tech World - Dheeraj Pandey, CEO, DevRev

Dheeraj Pandey, Co-founder and CEO at DevRev , has a remarkable journe...

Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip

Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

SVoD revenues shows promising growth

SVoD revenues shows promising growth

Banking Industry has gone under huge transformation

Banking Industry has gone under huge transformation

Hexagon acquires CADLM to enhance its Smart Manufacturing autonomous and digital twin capabilities

Hexagon acquires CADLM to enhance its Smart Manufacturing autonomous and digital twin capabilities

IBM Consulting opens new Client Innovation Centers in Kochi and Coimbatore

IBM Consulting opens new Client Innovation Centers in Kochi and Coimbatore

 UNICORNS REVOLUTIONISING Placeholder image

OfB Tech. Pvt. Ltd

OfB Tech. Pvt. Ltd

Hella Infra Market Private Limited

Hella Infra Market Private Limited

Lenskart Solutions Private Limited

Lenskart Solutions Private Limited

The Good Glamm Group

The Good Glamm Group


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW