From useful to dangerous.
It looks like Websockets aren’t so great after all (at least in the short term). According to Mozilla and Opera posts, both companies will be disabling support for such technology until serious security flaws are fixed.
Recently, Adam Barth has shared a security study findings that raised a red flag for the current state of Websockets protocol.
Asa Dotzler, the Director of Community Development at Mozilla Corp. has raised a fair question:
Why do I have these plug-ins in Firefox? I don’t think I ever asked for any of them
There are quite a few plug-ins that make little to no sense, for example:
Why would Firefox ever need a Google or RockMelt Update? Furthermore, why is it okay to install all this malware for the big guys like Apple or Google?
P.S. They are enabled by default.
• Microsoft Caught Cheating in the Sunspider Benchmark
Oh boy, here we go again.
Or so it seems.
According to the “Dirty Dozen” applications list (which is basically a collection/report of the most discovered software flaws that require security updates), when it comes to vulnerabilities, Google Chrome is the no. 1 application to get.
Furthermore, same report claims that Internet Explorer has far less security flaws than Safari or Firefox web browsers.
Now here is something different.
Eric Butler has released a Firefox extension called Firesheep, which will give you an access to other people social media accounts, as long as both of you are connected via insecure WiFi.
How does it work?
• All the Way to Internet Explorer 13
It seems like Microsoft decided to increase its domain names portfolio, as company…
It looks like a new Firefox Trojan is in the wild and none of the antivirus programs can fix the issue.
According to webroot post, Trojan modifies nsLoginManagerPrompter.js file so Firefox would no longer ask, whether user would like to save entered password or not, and does that anyway.
After logins are stored, Trojan keeps sending stolen information to its author, Salar “Salixem” Zeynali in a rate of once per minute.
Yes, you read it right, Trojan author takes all the credit and can even be found on a Facebook site.
• IE9 Beta: 6 Million Downloads in Two Weeks
Following 2 million downloads milestone on September 21st, Microsoft has…
Oh boy, here we go again…
Remember our early reported AutoFill security issue? Well, it looks like browser vulnerability was not properly patched, as your data can still be stolen.
Since it affects Safari 4 and 5 web browsers (including 5.0.5), here is a temporary fix:
Go to Preferences > AutoFill > AutoFill web forms and uncheck “Using info from my Address Book card”.