Clickjacking
Clickjacking is a malicious technique where a user is tricked into clicking something different from what the user perceives, effectively hijacking clicks. This is achieved by overlaying an invisible frame or layer over a seemingly innocuous web element. Clickjacking can lead to unauthorized actions on behalf of the user, such as posting on social media, changing account settings, or even compromising security. Protecting against clickjacking involves implementing frame-busting scripts, using security headers like X-Frame-Options, and adopting Content Security Policy (CSP) directives.