Comments on: Facebook Adds Code for Clickjacking Prevention

By: Preliminary analysis of Facebook Click jacking Attack “Chica Sexy” | ashishb

Tue, 01 Nov 2011 09:59:01 +0000

[...] buttons hidden underneath the video by setting there opacity to zero. It should be noted that it is tough if not impossible prevent click-jacking attack for “like” button [unlike in case of "share" button where [...]

By: adlai

adlai — Tue, 31 May 2011 02:06:53 +0000

i use google chrome, and often i open links from facebook in an incognito window. in that window, i’m not logged into facebook. if it turns out to be a real youtube video, who cares – i’ll watch it. if it’s clickjacking, then clicking it will prompt me to log into facebook. clickingjacking foiled!

By: Laura

Laura — Mon, 08 Nov 2010 23:29:12 +0000

Hahahaha, Daniel, you speak for the majority of Facebook and indeed internet users, I think.

Great article, keep up the good work!

By: Daniel Jackson

Daniel Jackson — Tue, 07 Sep 2010 10:54:06 +0000

If i knew what the hell you’re all on about i would spout something intelligent and blend in. I am a clickjack victim here… Hooked me with “you’ve been caught on a hidden camera”. I stupidly fell for it and clicked… But what i really want to know, is can i track em down and dish out some payback? or even better, clickjack ‘em back!!!

By: theharmonyguy

theharmonyguy — Wed, 14 Jul 2010 21:53:26 +0000

@photon_off: Not true. JavaScript’s often used to enhance clickjacking attacks, but they can be successfully executed using only CSS and iframes.

By: photon_off

photon_off — Wed, 14 Jul 2010 06:06:33 +0000

“An immediate weakness is that this requires JavaScript to work”

…

So does clickjacking in the first place.

By: ………..und der Admin hyperventilierte » Blog Archive » 10 der besten, interessantesten, wichtigsten und unterhaltsamsten Artikel aus der Security-Branche.

Tue, 16 Mar 2010 11:37:31 +0000

[...] Facebook Adds Code for Clickjacking Prevention [...]

By: Traffic Ultimatum - The latest update.

Traffic Ultimatum - The latest update. — Sun, 14 Mar 2010 06:38:15 +0000

[...] Facebook Adds Code for Clickjacking Prevention | Social Hacking [...]

By: What’s Better? Facebook FarmVille Cheat Codes or FarmVille Perfect? | 0845

Sun, 14 Mar 2010 03:19:06 +0000

[...] Facebook Adds Code for Clickjacking Prevention | Social Hacking [...]

By: Luke Shepard

Luke Shepard — Sat, 13 Mar 2010 23:22:45 +0000

Thanks for the good description, Simon. We rolled out this protection for all pages.

Here is a previous story about how we handled clickjacking protection for Facebook Connect sites:
http://developers.facebook.com/news.php?blog=1&story=312