GitHub

neovov/Fullscreen-API-Polyfill

This little script ease the way to use the fullscreen API. As you know, vendors are currently implementing this API so every methods, properties and events are prefixed. This script will detect the ...
GitHub

explainers-by-googlers/html-fullscreen-without-a-gesture

Sites entering HTML Fullscreen require transient activation from a user gesture. While that is generally a useful safeguard, it also prohibits some advanced windowing capabilities. This explainer ...
Yahoo Finance

Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal ...

Despite this, one flaw that BitM attacks always had was the fact that the parent window would still display the malicious URL, making the attack less convincing to a security-aware user. However, as ...
The Hacker News

Advance Phishing Attacks using HTML5 Fullscreen API

Do your ever use YouTube Instant Search engine (a really fast way to search YouTube) ? That was developed by a 21 years old developer name - Feross Aboukhadijeh in 2012. Chad Hurley, CEO and ...
Security Boulevard

Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal ...

Today, SquareX released new threat research on an advanced Browser-in-the-Middle (BitM) attack targeting Safari users. As highlighted by Mandiant, adversaries have been increasingly using BitM attacks ...
Dark Reading

Web API Allows Phishing Attack

A proof-of-concept phishing attack designed by a Stanford computer science graduate student offers a reminder that new Web technology can reinvigorate old risks. Feross Aboukhadijeh, a Web designer, ...