Clickjacking

Clickjacking is an attack where malicious actors trick users into clicking something different from what they perceive, often by overlaying transparent elements over legitimate buttons or links. This can lead to unwanted actions, data theft, or malware installation. To prevent clickjacking, developers implement frame-busting code and use security headers like X-Frame-Options or CSP frame-ancestors to control how their pages can be embedded in iframes.