Category: Security

Weekly Browsers Recap, December 14th

By | December 14, 2008 | 0 Comments

Internet Explorer 8 Is the Safest Web Browser

By | December 12, 2008 | 17 Comments

Internet Explorer 8 — Microsoft’s latest release, currently at the Beta 2 stage — was declared to be the safest (aka more secure than Firefox 3.1 Beta and Chrome Beta) but the least popular browser, according to a browser security survey.

On Wednesday, Utest, a social-networking and software testing company, announced the results of its Bug Battle browser contest. The event included participation from 1,330 security pros, hobbyists and tech enthusiasts, who found an alarming 672 bugs in the world’s top three Web browsers. Continue Reading

Trojan for Firefox

By | December 5, 2008 | 2 Comments

BitDefender has identified this new bit of holiday cheer as Trojan.PWS.ChromeInject.A.”

The trojan installs itself into Firefox’s add-on directory, registers itself as Greasemonkey, and begins searching your hard drive for passwords, login details, your World of WarCraft account information, and your library card number.

Once installed, the trojan is capable of identifying over 100 web sites. When an infected user visits a site the trojan recognizes, the parasite comes to life and records the login/password details being transmitted. Presumably it then goes back to sleep, quietly keeping an eye on further system activity.

For more details, check original post by ArsTechnica.

[digg-reddit-me]

Google Chrome Download Vulnerability

By | September 4, 2008 | 3 Comments

Google Chrome Download VulnerabilityUS-CERT is aware of a vulnerability that affects the Google Chrome web browser. This vulnerability is due to a default configuration that allows files to be downloaded without prompting the user. In addition, downloaded files can be opened with a single click, which could allow a user to inadvertently open a malicious file.

US-CERT encourages users to enable the “Ask where to save each file before downloading” option within the “Minor Tweaks” tab in the browser preferences. Continue Reading

Web Browsers Security Test

By | June 27, 2008 | 5 Comments

Web Browsers Security TestTime for yet another web browsers security article. So there’s a test called “Browser Security Test” which I found today and decided to run it on the latest stable web browsers releases. What about results?

Firefox 2.0.14 – All Passed
Firefox 3.0 – All Passed Continue Reading

Web Browsers Security – Internet Explorer (IE), Firefox, Safari, Opera

By | June 16, 2008 | 11 Comments

Web Browsers Security - Internet Explorer (IE), Firefox, Safari, OperaSome time ago we’ve posted an article about web browsers security which is based on Secunia reports.
Well, before the Firefox 3 release, it’s time to check how web browsers (latest “stable” versions) are doing now (2nd round).
Continue Reading

Firefox Security? Here We Go Again

By | May 8, 2008 | 4 Comments

Firefox SecurityIt looks like there are some issues with the Firefox 2 Vietnamese Language Pack 2.0. According to bugzilla.mozilla.org, file contains malicious code. Language pack author PC was infected with the virus so it can’t directly affect you. However, you will still see banner ads.

I wonder if anyone from Mozilla is *really* running some checks before releasing add-ons and/or language packs to public…

News and Reviews about Your Favorite Web Browser. Subscribe to our RSS Feed.

Firefox 2.0.0.13, Sooner Than You Thought

By | February 10, 2008 | 3 Comments

Firefox 2.0.0.13Just a few days ago (with the Firefox 2.0.0.12 release), “Directory Traversal Vulnerability” was supposed to be fixed. However, as it’s noted here, by the guy who discovered new security vulnerability, it wasn’t fully fixed. Here’s a quote from his blog:

Because directory traversal through plugins is all nice and such, we don’t need it. We can trick Firefox itself in traversing directories back.

Continue Reading

Firefox 2.0.0.12 to Fix Chrome Protocol Directory Traversal Vulnerability

By | January 30, 2008 | 1 Comment

Firefox 2.0.0.12The upcoming Firefox 2.0.0.12 release will fix this flaw. It affects extensions (more than 600) which are installed as a set of uncompressed files instead of widely used .jar files.

Issue
A vulnerability in the chrome protocol scheme allows directory traversal when a “flat” add-on is present resulting in potential information disclosure.

Impact Continue Reading

ZoneAlarm ForceField Beta Released

By | September 26, 2007 | 0 Comments

ZoneAlarmZoneAlarm Forcefield beta has just been released for Windows XP and Windows Vista. It should be working with Internet Explorer 6-7 and Firefox 1.x-2.x versions. So what is it all about? It can protect you from various “bad things”. And as they say: “Protect yourself by creating a virtual “You” on any PC…”

ForceField lets you connect and communicate the way you already do online, only with a combination of protective measures that makes you impervious. It uses a virtualization engine that shields your computer and personal data from Internet and computer-based threats. It also includes numerous protection layers to combat phishing, spyware and dangerous file downloads.

Isn’t that a good idea?

More details.

It’s a Beta only, still many issues needs to be fixed. However, feel free to try it if you are interested.

Known issues:

  • Virtualized surfing – Creates a “bubble of security” around your browsing session that works two ways: it protects your PC from Web site threats such as drive-by downloads; and protects your browsing session from threats on your PC
  • Seamless use – surf as you always do without any special knowledge required and no interruptions
  • Keylogger jamming – protects your browsing, banking and shopping by disabling keyloggers/screengrabbers that may reside on your PC
  • Anti-spyware scanning during your browsing session to protect you as you bank and shop
  • Phishing and fraudulent Web site warning and protection
  • Dangerous download scanning and protection
  • Private browsing to completely erase your surfing tracks from your PC (not yet in the beta)
  • Svelte proportions – ForceField can be deployed to any PC within about 30 seconds in its Instant ForceField form (not available in current beta), making it convenient for on-the-go use on shared public computers.
  • Full known issues list.

    Learn more.

    Download ForceField 1.0.158 Beta.

    Like this post? Subscribe to our RSS Feed.