Clickjacking is a fraudulent technique that redirects the user's click to a different object than the one he actually clicked
Clickjacking does not always involve malware or viruses. We are used to think that every scam perpetrated on the Net has to do with phishing campaigns or viruses that steal users' access credentials. But this is not always the case. Clickjacking, for example, is a fraudulent practice that does not use any kind of malware to scam users.
What is clickjacking and how does it work
What you risk with clickjacking
Compared to malware, clickjacking is much less dangerous for the user. You don't risk having your Facebook or online banking credentials stolen. And besides, clickjacking is impossible to implement on e-commerce sites. The only real danger is of being put on some spam list and finding your inbox completely full. In addition, some fraudsters use clickjacking to direct traffic to banner ads: the risk for users is to see pop-up ads opening while they are surfing the Internet.
How to defend against clickjacking
Clickjacking cannot be fought with normal antivirus software and in most cases the user is not at fault. If we notice that while we are browsing a web page and websites open that we have not clicked on, we should immediately close the page and log out of all social accounts. Also, to see what clickjacking comes from, you need to check the activity log and see if there is anything abnormal. Finally, to prevent clickjacking you can install extensions on your browser that block scripts used by scammers to implement the fraudulent technique. One of the best is NoScript.