I suppose that exposes security risks that attacker can open a background window and put it into fullscreen without having user notice it. And then when user switches window, it may start spoofing.