Fullscreen BitM Attack Discovered By SquareX Exploits Browser Fullscreen APIs To Steal Credentials
hackernoon.comA new attack on Safari uses a flaw in the Fullscreen API to create a fullscreen BitM window. Safari users are especially vulnerable to this attack as there is no clear visual indicator of users entering fullscreen. Existing security solutions fail to detect the attack and are proven to be obsolete when it comes to detecting any BitM attack.

PALO ALTO, California, May 29th, 2025/CyberNewsWire/--Today,
As highlighted by
BitM attacks work by using a remote browser to trick victims into interacting with an attacker-controlled browser via a pop-up window in the victim’s browser.
A common BitM attack involves displaying the legitimate login page of an enterprise SaaS app, deceiving ...
Copyright of this story solely belongs to hackernoon.com . To see the full text click HERE