Gummy Browsers: The New Cyberattack Developed by Researchers

Academic experts from a U.S. university designed a new type of cyberattack dubbed Gummy Browsers. Its main characteristics include the capturing of fingerprints and also tricking the browser.

Gummy Browsers Attack: How It Might Unfold

According to BleepingComputer, the method of the Gummy Browsers attack follows a pattern where a victim is determined to access a malicious website, so this would be the moment when hackers could get their fingerprints. Having this, cybercriminals can go to a target platform in order to perform identity spoofing.

Experts generated by means of already existing scripts or customs ones a user fingerprint. Then they developed 3 methods to get the user spoofed on different websites.

Method 1 – Injecting script

With executing scripts like Selenium, for instance, that contains JavaScript API calls extracted values, a fingerprint can be spoofed.

Method 2 – Tool debugging and setting of the browser

These tactics are useful if browser attribute change is desired, the attribute can be modified into any customized value. These will have an impact firstly on the JavaScript API and secondly on the matching value from the HTTP header.

Method 3 – The altering of the script

The properties of the browser can be

Read More: https://heimdalsecurity.com/blog/gummy-browsers-attack/