Category: Security

Mozilla Partners With Tor & CDT

By | November 26, 2014 | 0 Comments

Mozilla Partners With Tor & CDTForms a new privacy initiative called Polaris.

In an effort to protect its user’s privacy, Mozilla has announced a new strategic initiative with the Center for Democracy & Technology (CDT) and the Tor Project, which they hope will support and advise Polaris projects that should benefit everyone.

As a result, two new experiments have been announced as well (under Polaris belt), focusing on anti-censorship technology, cross site tracking protection and anonymity. In addition to that, Mozilla will also start hosting Tor middle relays, which will make the whole Tor network more responsive.
Continue Reading

BrowserStack Gets Compromised

By | November 17, 2014 | 1 Comment

BrowserStack Gets CompromisedTough luck.

BrowserStack, a paid service with over 25,000 customers (including eBay, Adobe and other giants) that allows you to test your web sites on more than 700 different web browser configurations, has been compromised.

The customers has since received the following email:
Continue Reading

Google Discovers Another SSL Exploit

By | October 17, 2014 | 1 Comment

Google Discovers Another SSL ExploitBack in April, everyone was talking about “that Heartbleed thing”, now, it looks like the search giant has found a new exploit in the now 18 year’s old SSL 3.0 protocol, which is still supported in a lot of web browser and can also be used as a fallback in case newer protocols fail to connect.

How to fix it? Well, the server administrators could disable SSL 3.0 completely but that’s unlikely to happen anytime soon. As far as other solutions go, Google says that it can’t be fixed and there are no reasonable workarounds.

On a slightly positive note, it was discovered (and not fully revealed) by Google so no one knows how widespread it exactly is. So here you have it folks, an exploit that can’t be fixed.
Continue Reading

Google Triples Chrome’s Max Bounty

By | October 2, 2014 | 0 Comments

Google Triples Chrome's Max Bounty More money, more security.

After squashing more than 700 Chrome security bugs and paying a total of $1.25 in rewards, the search giant has decided to encourage hackers even more.

Starting from July 1, 2014 (yes, they are going backwards as a special treat even though they announced it recently), Google is upping the maximum reward range from $5000 to $15,000, which is triple of what they used to pay (although there were always few exceptions such as last month’s $30,000 pay for what they call to be “a very impressive report”.
Continue Reading

Improved Chrome Safe Browsing Filter Is Coming

By | August 21, 2014 | 0 Comments

Improved Chrome Safe Browsing Filter Is ComingAims to block even more malware.

Back in 2013, Google has announced a Safe Browsing filter, which improves user experience by automatically blocking malicious downloads. Now, the search giant has announced additional steps to combat deceptive software.

Starting next week, Google Chrome will also protect users from programs that are disguised as a helpful download, for example: the ones that change your home page or adjust other web browser settings.
Continue Reading

Microsoft Starts Blocking Old ActiveX Plugins

By | August 13, 2014 | 0 Comments

Microsoft Starts Blocking Old ActiveX PluginsGood bye, ActiveX.

In an effort to improve the overall browser security and reduce user frustration, the software giant has announced that it will start blocking outdated ActiveX controls starting August 12, 2014.

According to Microsoft, “Java exploits represented 84.6% to 98.5% of exploit kit-related detections each month in 2013” and “to help avoid this situation with ActiveX controls, an update to Internet Explorer on August 12, 2014 will introduce a new security feature, called out-of-date ActiveX control blocking.”
Continue Reading

Latest Chrome Beta Drops OpenSSL

By | July 24, 2014 | 0 Comments

Latest Chrome Beta Drops OpenSSLSay hello to BoringSSL.

After the recent Heartbleed bug paranoia, it looks like Google took a pretty significant step to minimize such risks in the future. According to the report, the search giant is replacing OpenSSL with its own BoringSSL (yes, they did call it like that) in an effort to streamline security patches and improve overall user security.
Continue Reading

Opera Now Imports Browser’s Passwords & Other Data Without Your Permission

By | June 10, 2014 | 7 Comments

Opera Now Imports Other Browser’s Passwords & Other Data Without Your PermissionSilent mode for everything.

Recently, Opera followed other browsers and revealed a new build, which would automatically update your software to the latest version. Now, it looks like Norwegian browser maker has decided to go an extra mile and silence even more tasks, starting with the latest Developer build (23.0.1522.0), Opera will now scan your PC for other web browser installations / profiles and silently import all data (on the first run) without your permission, including: passwords, cookies, history and bookmarks.
Continue Reading

Microsoft Fixes Internet Explorer Vulnerability

By | May 3, 2014 | 1 Comment

Microsoft Fixes Internet Explorer VulnerabilityManages to surprise everyone as well.

After a recent discovery of Internet Explorer vulnerability, where attackers could take over your PC and install malicious software, the software giant has finally released a set of updates to address the overblown issue.
Continue Reading

UK And US Governments Advises Not To Use Internet Explorer

By | April 28, 2014 | 2 Comments

UK And US Governments Advises Not To Use Internet ExplorerWhy would you use XP anyway?

Due to a recently discovered Internet Explorer (6-11) vulnerability, which will likely be patched soon for all but Windows XP users, UK and US governments are advising users to switch to alternative web browsers.

Security firm FireEye have warned users that a group of hackers are already exploiting the vulnerability targeting Internet Explorer 9-11 and Adobe Flash, so in any case, you are better of using something else.
Continue Reading