Man-in-the-Browser
A Man-in-the-Browser attack uses malware inside the victim's own browser to intercept and modify web sessions in real time. Because the tampering happens after decryption, it defeats TLS and can silently alter banking transactions while showing the user expected screens. Banking trojans made this technique infamous, and it is countered with out-of-band transaction verification and endpoint protection.