Share it on Facebook. When the user click on the shared link and come back to the Facebook tab, he should see a fake Facebook login page (in French).
This attack use window.open
vector. Since all shared link on Facebook use target="_blank"
, the opener property is shared with the target page (attacker page) and allow this page to control the facebook tab location
To solve that, Facebook should use a redirect page where the property window.opener
is set to null
:
<head>