Clickjacking is an interface-based attack where the hacker manipulates the CSS of a website to insert a malicious iframe, button, or link which hides behind a seemingly harmless button of link. It takes the user to a malicious page and triggers some unsolicited action on the user's behalf.

A clickjacking attack may be used to trigger a malware download, loss of content, or money, among other things. You can detect it with the help of penetration testing.

In this short video, you learn how clickjacking attacks work and how you can protect your users from exposure to these attacks.

Video timeline

0:00 - What is a Clickjacking attack

0:23 - How a hacker launches the attack

0:30 - Instances of Clickjacking hack

1:02 - A simple clickjacking code

1:22 - How to protect your users from clickjacking

1:46 - Astra can help

Useful links
Penetration Testing - What, Why & How [A Complete Guide] https://www.getastra.com/blog/security-audit/penetration-testing/

If you have any queries related to clickjacking, or any other pentest-related concern, feel free to reach us at hello@getastra.com