Guys from SecureThoughts.com decided to do a research on Opera Unite security and share some insights.
1. Enumerating Service Owner Usernames
Use: site:operaunite.com search query in search engine to build a list.
2. Enumerating Computer names for a particular Service Owner
“If you visit the service homepage with any non-existent computer name, then Opera Unite happily discloses all computer names used by that person.” Continue Reading
- IE 6 for Windows phones: Interface improved
- Mozilla Weave 0.7 Released
- Mozilla ‘Plugin Check’ keeps Firefox add-ons secure
- Google Chrome Is Exceeding Internal Benchmarks for Adoption
- Forged PayPal certificate fools IE, Chrome and Safari
- Opera Mini Server Upgrade to 4.13.756
- Opera CEO says market trends to boost firm
- Personal Web Systems Lands $1.2 Million for TV Web Browser
Thanks to mabdul for links.
- Microsoft Internet Explorer SSL security hole lingers
- Electrolysis Firefox builds are now available
- Firefox Windows Theme Project (Progress Report) #4
- WebGL in Firefox Nightly Builds
- Mozilla speeds Firefox development
- Can Chrome Shake Up the Browser Market?
- Browser Wars Mobile Edition: Opera Mini 5 Beta on the Blackberry Storm
- Camino 2.0 Beta 4 Released
- Maxthon Releases Version 2.5.8 of Browser
Thanks to Nox and Shane Bundy for links.
- Firefox 3 about to get a major update
- Please tell me Firefox won’t ever look like this on first run. (Picture)
- Seeking web security, exploit operators prefer Firefox, Opera comes second
- Google Chrome 4 reveals the beginnings of cloud synchronization
- Xmarks extension alpha for Chrome arrives
- HTML 5 and timed media
Thanks to Chrome, Nox and Opera for links.
Here are some more details from Ars Tecnica, which should clarify Microsoft and NSS Labs “sponsorship” deal.
In terms of sponsorship of the reports, “this stuff is expensive to do right, and we need to monetize it somehow,” Moy told Ars. “We invited Google, Mozilla, Apple, Opera to participate, but they didn’t even bother to respond, except for Opera, which stated they “don’t really focus on malware.”
Also, readers have noticed that Firefox 3.5 was not included in those tests, here is a reason (as from .pdf).
We would have liked to have been able to test Firefox 3.5 which was released on June 30, 2009, and attempted to test it alongside the other browsers. However, serious instability where the browser repeatedly crashed (a widely reported issue) along with poor results prevented its inclusion for the sake of fairness.
For NSS Security Test results, see the following page.
The Register writes:
Microsoft might be closer to a compromise with browser rival regarding Internet Explorer on Windows, but access to key online services for PCs could be the next hurdle.
Opera Software chief executive told The Reg he welcomed Microsoft’s offer last month to give European PC users a choice of browsers on Windows, but he warned of “problems” if rival browsers don’t get equal access to crucial sites that help keep users’ PCs secure and updated.
Back in March, NSS Labs has revealed shocking statistics which suggested that Internet Explorer 8 had best effectiveness results against malware.
As of today, Neowin reports that NSS Labs has yet again tested all web browsers to find out which one has best built-in protection against phishing.
Tested web browsers:
Internet Explorer 8
Opera 10 Beta Continue Reading
Starting from August 11th, nightly builds of Camino web browser now includes integrated phishing and malware protection.
The following feature is based on Google Safe Browsing service which is being used by Firefox, Chrome and Safari web browsers as well.
As for their competitors, Opera is using Netcraft, PhishTank and Haute Secure services while Internet Explorer has its own SmartScreen Filter.
The latest Google Chrome 2 release has fixed 2 security vulnerabilities. As H Online reports: “The first vulnerability could be used by an attacker to run arbitrary code within the Google Chrome sandbox.”
Furthermore, critical memory corruption vulnerability was also fixed which could have caused browser to crash and possibly allowing attacker to run arbitrary code with the privileges of the logged in user.
For some more details, you can always visit H Online.
Thanks to mabdul for sending this.
- Microsoft Changes IE8 Default Browser Settings
- US State Dept. workers beg Clinton for Firefox
- Glass-enabled tab bar (Aero) in Opera
- Opera Unite Struggles to Keep up With Its Ambitions
- 3D animations coming to Safari
- Google Chrome Gestures Extension
- DOM flaw can crash many browsers
- Shorten long URLs with thurly
Thanks to Daniel Hendrycks, mabdul and Nox for links.