Phishing attack uses tricky 'tabnapping'

A Mozilla user interface specialist has published proof-of-concept code for a new phishing technique, which makes use of morphing browser tabs to trick people into giving away login information.

Traditional phishing techniques generally lead a user directly to a malicious web page that impersonates a trusted page, such as an online banking login site, which can then harvest the user's login information.

The new technique, called 'tabnapping' or 'tabjacking', demonstrated by Mozilla Firefox creative lead Aza Raskin in a blog post earlier this week, leads a user to what appears to be a genuine site that delivers the content promised.

For more on this story, read Phishing attack uses tricky 'tabnapping' technique at ZDNet UK.