User report: popunder/fullscreen abuse |
|||
Issue descriptionFrom the article https://blog.malwarebytes.com/cybercrime/2017/12/tech-support-scammers-make-browser-lockers-resilient/ and from email with the author, Jerome Segura: The Fiddler attachment "TSS_close_dialog" is from the article. The author says, "To trigger the pop-under tab, you need to click on the fake red close button." Another abuse recording from Fiddler is "Replay_Popunder". The author says, "Here's another one, also hiding some of the user choices in a pop-under tab. To trigger it, you need to click anywhere on the fake site."
,
Feb 13 2018
Tested on Windows 7 64bit, Google Chrome Version 64.0.3282.140 (Official Build) (64-bit) Steps to reproduce behaviour with 'Replay_Popunder.saz' 1) if possible, use Fiddler's AutoResponder to revisit the site 2) click anywhere on the main site 1 time to trigger pop-under 3) click again anywhere on the main site to trigger fullscreen mode result: user is effectively locked in fullscreen mode Note: 'TSS_close_dialog.saz' is missing some components for offline replay to to help with the locking trick, but I believe it is the same mechanism.
,
Aug 3
This bug has an owner, thus, it's been triaged. Changing status to "assigned".
,
Nov 13
|
|||
►
Sign in to add a comment |
|||
Comment 1 by a...@chromium.org
, Feb 9 2018