As reported previously by FavBrowser, Google Chrome’s sandbox has allegedly been hacked. Nevertheless, several security engineers over at Google have now denied this, countering claims that a security company discovered a vulnerability in Chrome that could let attackers hijack Windows PCs running the browser.
The bug that security company Vupen exploited to hack Chrome was in Adobe’s Flash which comes bundled with Chrome, not in Chrome itself, said the engineers. A Google spokesman said that investigation was still ongoing, but the engineers decided to make themselves heard.
The end is near.
After countless attempts, the almighty Sandbox has been bypassed by the French security company Vupen, which won the $15,000 cash prize just few months ago in the Pwn2Own contest for successfully hacking Safari web browser.
Although Google was unable to confirm such claim, the buzz is quickly spreading all over the Internet.
LastPass, a popular password manager and form filler may have been hacked.
According to the official blog posts, users are now forced change their master password due to network anomalies that were not yet identified.
In the interview with PC World, LastPass CEO shared his opinion and insights on the possible hack. Furthermore, he thinks that not a lot of data could have been stolen but enough to potentially compromise some of the users.
If you are using LastPass, be sure to check their blog post which is constantly updated.
- Internet Explorer 9 Overtakes Opera
- April, 2011: Chrome, Safari Share Up; Internet Explorer, Firefox, Opera – Down
- Mozilla Defies the Department of Homeland Security
- Creator Of jQuery Leaves Mozilla
- How To Save And Quit In Firefox 4
- How to Activate Autocomplete in Firefox 4
- Google Chrome 14, 15 And 16 Planned This Year
- Google Chrome: Dear Sophie
- Google Chrome: It Gets Better
- Opera Dragonfly 1.0 Released
- Download Opera 11.50 Alpha
- RockMelt Now With Quiet Mode, Localized Search & Chromium 11
- Give Away: How to Create Web Browser Theme
Java and security vulnerabilities go together like bread and butter and fortunately for some users, it is now blocked in Google Chrome.
In case web page tries to access Java plug-in, the following message will be displayed:
“The Java plug-in needs your permission to run.”
After such popup, user can select whether he or she wants to run plug-in this time only or whitelist site all together.
For those who would like to disable protection, all you have to do is add –always-authorize-plugins command line flag.
Good news, nonetheless.
Source: Google Chrome Help.
- Microsoft Starts Bug Warnings For Third Parties
- Mozilla Introduces New Channel Structure for Firefox
- Google Chrome Theme for Firefox 4
- Google Chrome Has 120 Million Users
- Chrome Called Out By FTC Over Do Not Track
- Opera: Disable Auto Image Fit to Screen / Pictures Resizing
- Safari to Receive Do Not Track Feature
- Maxthon Theme for Firefox 4
- Block Visitors That Block Ads?
Google was singled out by Federal Trade Commission Chairman Jon Liebowitz this week due to not yet having detailed any plans for integrating the Do Not Track feature. What this particular privacy feature does is let consumers opt out of online tracking by Web sites and advertisers, Google belonging to both of these categories.
Apple just announced they’re going to put it in their Safari browser. So that gives you Apple, Microsoft and Mozilla. Really the only holdout — the only company that hasn’t evolved as much as we would like on this — is Google.
Three security advisories were released for rival browsers by Microsoft today, two of which for Chrome and one for Opera. Said bugs were spotted by researchers at Microsoft and brought to the attention of the security teams in charge of Opera and Chrome. Opera patched the bug in October of 2010 while Google fixed the vulnerabilities last September and December.
According to Mike Reavey, the director of the Microsoft Security Response Center (MSRC), the change is part of an expansion of the vulnerability disclosure policy launched by Microsoft the previous summer. These advisories were the first to be issued by Microsoft for vulnerabilities found in third party software. Other advisories will follow as necessary.
If the Wall Street Journal reports are to be believed, then the upcoming version of Apple’s Safari web browser (that comes with Mac OS X Lion) will include an option for users to disable tracking via cookies.
The recent Internet Explorer 9 and Firefox 4 releases already include “Do Not Track” functionality and with Safari soon to follow, Google Chrome and Opera are the only browsers that leave their users behind.
Hopefully, this will change soon.
- Internet Explorer 9 (IE9) vs. Firefox 4 vs. Google Chrome 10 vs. Opera 11 vs. Safari 5
- March, 2011: Firefox, Chrome, Safari Share Up; Internet Explorer – Down
- Mozilla Names Slow Extensions
- Google Chrome to Receive Scrolling Tabs
- Google Chrome to Improve Security
- Google Chrome Cookies
- The Story of Opera Employee
- Download Opera 11.10 RC
- CycleBlob: WebGL Lightcycle Game
- How Would You Change FavBrowser?
- FavBrowser.com v3 Launched