How is he making the URL in the popup look legit? | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		recroad on March 17, 2022 \| parent \| context \| favorite \| on: Browser in the Browser (BITB) Attack How is he making the URL in the popup look legit?

r3trohack3r on March 17, 2022 [–]

AFAICT it’s not a popup. The “window” is actually a DOM element designed to look like a window floating over the web page. The entire “window”, url bar and all, is just a cleverly disguised part of the phishing website.

recroad on March 18, 2022 | [–]

Aah, I see. Thank you.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact