Simon Willison’s Weblog

Items tagged facebook, clickjacking, framing, security

Filters: facebook × clickjacking × framing × security ×


Facebook Adds Code for Clickjacking Prevention. Clever technique: Facebook pages check to see if they are being framed (using window.top) and, if they are, add a div covering the whole page which causes a top level reload should anything be clicked on. They also log framing attempts using an image bug. # 13th March 2010, 10:42 am