Clickjacking is an attack that tricks a user into clicking an invisible or disguised webpage element. This can cause users to unknowingly download malware, visit malicious web pages, provide credentials or sensitive information, transfer money, or purchase products online.
It is carried out by displaying an invisible page or HTML element inside an iframe on top of the page the user sees. The user believes they are clicking the visible page, but in reality, they're clicking an invisible element in the additional page transposed on top of it.
It works by making you click on a button or link that looks harmless but does something harmful in the background.
Here is an example: You are browsing the internet, and you come across a website that asks you to click on a "Like" button. But when you click the button, it downloads malware onto your computer or shares sensitive information with a hacker. This is clickjacking.
There is nothing that can be done to prevent this kind of attack, but we can take measures like:
up-to-date and reputed anti-virus
Check for a padlock on the URL (the website is using HTTP Secure).
Beware; if an offer seems too good to be true, it probably is. Be vigilant.