What is Tabnapping? Tabnapping is a type of phishing scam that fraudsters use to get hold of your personal information.
When the user clicks back onto the tab to find the fake log-in screen, they may assume that they have been logged out and re-enter their user information and password to log back in. When they enter these details, the personal information provided is sent straight to the fraudsters.
Fraudsters can then use this personal information to commit fraud.
The url in the browser’s address bar is not necessarily altered by tabnappers, so checking the url is the legitimate url of the service provider is not a sufficient precautionary measure.
The fraudsters may even put an additional message on the fake log-in screen, saying that the session has timed out and that the user needs to re-enter their log-in details. This is a message that appears on legitimate websites, particularly on banks, increasing the likelihood that the user thinks the log-in screen is trustworthy.
If fraud has been committed, report it to Action Fraud. (this information has been taken from the Action Fraud website)