{"id":454,"date":"2008-10-09T09:57:53","date_gmt":"2008-10-09T08:57:53","guid":{"rendered":"http:\/\/blog.intego.com\/?p=454"},"modified":"2019-09-03T12:18:11","modified_gmt":"2019-09-03T19:18:11","slug":"firefox-extension-protects-against-clickjacking","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/","title":{"rendered":"Firefox extension NoScript protects against Clickjacking"},"content":{"rendered":"<p>The latest version of the <a href=\"https:\/\/noscript.net\/getit#direct\" target=\"_blank\" rel=\"noopener\">NoScript<\/a> Firefox extension has been released, with special protection against <a href=\"https:\/\/www.intego.com\/mac-security-blog\/topic\/clickjacking\/\" target=\"_blank\" rel=\"noopener\">clickjacking<\/a>. This extension contains <a href=\"https:\/\/hackademix.net\/2008\/10\/08\/hello-clearclick-goodbye-clickjacking\/\" target=\"_blank\" rel=\"noopener\">ClearClick<\/a>:<\/p>\n<p>&#8220;whenever you click or otherwise interact, through your mouse or your keyboard, with an embedded element which is partially obstructed, transparent or otherwise disguised, NoScript prevents the interaction from completing and reveals you the real thing in \u201cclear\u201d. At that point you can evaluate if the click target was actually the intended one, and decide if keeping it locked or unlock it for free interaction. This comes quite handy now that more dangerous usages of clickjacking are being disclosed, such as enabling your microphone or your webcam behind your back to spy you through the interwebs.&#8221;<\/p>\n<p>Apple has as yet offered no similar protection for its Safari browser.<\/p>\n<p>Meanwhile, <a href=\"https:\/\/www.macworld.com\/article\/1135971\/noscript.html\" target=\"_blank\" rel=\"noopener\">Macworld reports<\/a> that there is a way for web sites to protect against clickjacking. &#8220;Web site owners, however, can take one step to prevent their users from falling victim,&#8221; said Giorgio Maone, an Italian security researcher who created the NoScript extension. &#8220;Programmers can use a script on their Web sites that checks to see if a Web page is embedded in another page.&#8221; This technique is called &#8220;framebusting&#8221;, and is used by major web sites such as PayPal.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick: &#8220;whenever you click or otherwise interact, through your mouse or your keyboard, with an embedded element which is partially obstructed, transparent or otherwise disguised, NoScript prevents the interaction from completing and reveals you the real [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":9917,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13,11],"tags":[4552],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Firefox extension NoScript protects against Clickjacking - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2008-10-09T08:57:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-09-03T19:18:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Peter James\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"width\":\"400\",\"height\":\"260\",\"caption\":\"Firefox browser security updates\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/\",\"name\":\"Firefox extension NoScript protects against Clickjacking - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage\"},\"datePublished\":\"2008-10-09T08:57:53+00:00\",\"dateModified\":\"2019-09-03T19:18:11+00:00\",\"description\":\"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Firefox extension NoScript protects against Clickjacking\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116\"},\"headline\":\"Firefox extension NoScript protects against Clickjacking\",\"datePublished\":\"2008-10-09T08:57:53+00:00\",\"dateModified\":\"2019-09-03T19:18:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage\"},\"wordCount\":213,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png\",\"keywords\":[\"Clickjacking\"],\"articleSection\":[\"Security &amp; Privacy\",\"Software &amp; Apps\"],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116\",\"name\":\"Peter James\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g\",\"caption\":\"Peter James\"},\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/peter\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/","og_locale":"en_US","og_type":"article","og_title":"Firefox extension NoScript protects against Clickjacking - The Mac Security Blog","og_description":"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:","og_url":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/","og_site_name":"The Mac Security Blog","article_published_time":"2008-10-09T08:57:53+00:00","article_modified_time":"2019-09-03T19:18:11+00:00","og_image":[{"width":"400","height":"260","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"Peter James","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","width":"400","height":"260","caption":"Firefox browser security updates"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/","name":"Firefox extension NoScript protects against Clickjacking - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage"},"datePublished":"2008-10-09T08:57:53+00:00","dateModified":"2019-09-03T19:18:11+00:00","description":"The latest version of the NoScript Firefox extension has been released, with special protection against clickjacking. This extension contains ClearClick:","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Firefox extension NoScript protects against Clickjacking"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116"},"headline":"Firefox extension NoScript protects against Clickjacking","datePublished":"2008-10-09T08:57:53+00:00","dateModified":"2019-09-03T19:18:11+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#webpage"},"wordCount":213,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/firefox-extension-protects-against-clickjacking\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","keywords":["Clickjacking"],"articleSection":["Security &amp; Privacy","Software &amp; Apps"],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d0c16bd0a4dd8f82d91204f400c8d116","name":"Peter James","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/0626bfb4ada576ba5aa775322329ad47?s=96&d=mm&r=g","caption":"Peter James"},"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/peter\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Firefox-Security-Update-Tile.png","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-7k","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/454"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=454"}],"version-history":[{"count":3,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/454\/revisions"}],"predecessor-version":[{"id":89497,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/454\/revisions\/89497"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/9917"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=454"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=454"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=454"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}