Browser in the Browser Attacks

It sounds strange but it is exactly what it sounds like. In this attack, the attackers fool you with a new browser pop-up in your browser. This new browser is controlled by the attackers and they trick you to sign in there using your credentials. The fake browser closely resembles your real browser and is nearly impossible to detect. So, basically, this attack happens through the Single Sign-In Option (SSO) and we are so used to the Single Sign-In option that we hardly notice if the website is real or fake. This is because it’s easy and quick, we don’t really want to create a new account for every website and then remember hundreds of passwords.

The Single Sign-in option means when we sign in to any app or program using our other accounts like Facebook, Google, Microsoft, Instagram, or your Apple ID, etc. It is actually an authentication method where we authenticate login to several websites and applications by using the same user-id and password. The SSO process collects and transfers your data from one system to another. So the attackers first send you a malicious link through email or message and trick you to open a fraudulent webpage and then you get a new browser in the browser with the SSO option. As mentioned above, this login page looks very real and is almost impossible to detect. When you log in to your account via this attackers-controlled webpage, your account gets hacked.

The attackers create the login page absolutely identical to the real ones using HTML/CSS. mr.d0x has shared a picture of the phishing page vs the real page and even after trying really hard, I couldn’t notice the difference.

How to avoid Browser in the Browser Attack

Here are some tips to help you to avoid Browser in the Browser Attacks on your PC:

The first and very important thing to do is to avoid clicking on any suspicious link you receive in your email or via any instant messaging service. Attackers usually send such malicious links via emails with some tricky messages like- “It’s you in the video”? If you are sure about the sender but still suspicious about the link, it is better to first verify it with the sender. Remember that the major trick is to land you on the malicious webpage before the pop-up window is displayed, so if you don’t click on such links, you are 100% safe.

2] Multi-factor authentication

Adding a two-factor factor authentication is a very good way to avoid any kind of hack attempts. We all know that just keeping good passwords is not enough nowadays, the attackers are very sharp to crack any kind of password. Multi-factor authentication provides an extra layer of security against such cyber-attacks.

3] Avoid SSO

I know it’s very difficult to avoid the single sign-in option because we are quite used to them, but it is a very good and in fact the best way to avoid the Browser in the Browser attack. Read: Tips to keep Hackers out of your Windows computer

4] Use password managers

The password managers with the autocomplete option usually can detect if the login URL is authentic or fake, thus using a password manager is a good idea to avoid these attacks. With the password managers, you can store all your login credentials in a secure electronic form and you just need to remember one master password. This way you can assign different passwords to the individual sites which is certainly more secure.

5] Use ‘anti-hacker’ software

There is actually no such thing as anti-hacker software but there are a few programs/software that can help you avoid such cyber-attacks and some of those are- Windows Security and OneDrive, Ghostpress, Anti-Hacker, etc. Now read: What are MitB or Man In The Browser Attacks?

Read: Safe software download sites to download Windows software free

Can we avoid Browser in the Browser attack?

The fake login page in the Browser in the Browser attack looks very real and it is almost impossible to detect it. All you can do is avoid clicking any suspicious and be a little extra careful while using SSO.