In this paper, Paul Stone explores other ways a user can be tricked into interacting with a framed web page, that could allow an attacker to inject arbitrary text into forms and extract content from a web page. Paul shows a new technique that allows information leaded from an iframe to be used for login detection and many other purposes.
Next Generation Clickjacking
Clickjacking is a term first introduced by Jeremiah Grossman and Robert Hansen in 2008 to describe a technique whereby cross-domain attacks are performed by 'hijacking' user-initiated mouse clicks to perform actions
