Threat hunters have disclosed a new « widespread timing-based vulnerability class » that leverages a double-click sequence to facilitate clickjacking attacks and account takeovers in almost all major websites.
The technique has been codenamed DoubleClickjacking by security researcher Paulos Yibelo.
« Instead of relying on a single click, it takes advantage of a double-click sequence, » Yibelo said.
