Most websites these days offer multiple options to create an account.
“However, clever hackers are now taking advantage of this route in an ingenious way.”
However, this strategy often falls apart if people carefully scrutinize the URL.
Boonchai wedmakawand / Getty Images
“The fake URL bar can contain anything it wants, even seemingly valid locations.
To demonstrate BitB, mr.d0x created a fake version of the online graphic design platform, Canva.
The technique has impressed several web developers.
For starters, despite the BitB SSO pop-up window looking like a legitimate pop-up, it really isn’t.
“This is where [multi-factor authentication] or use of passwordless authentication options can really be helpful.
The internet is not our home.
It is a public space.
We must check what we are visiting.
To see a pop-up like this, you would already have had to be on a fake website.
The internet is not our home.
It is a public space.
We must check what we are visiting,” stressed Gendre.
