Tag: browser

  • JavaScript Attack Can Break ASLR

    Gold Padlock

    BleepingComputer has reported that security researchers discovered a new attack that can be carried out in nearly any browser just using JavaScript. Even with the protections & sandboxing of today’s modern browsers (like Google Chrome, Microsoft Edge, Opera, and Mozilla Firefox) it can break the address space layout randomization (ASLR) that most of today’s central […]

  • Release: Google Chrome 56

    Google Chrome Browser Logo: Blue gradient circle with a thick white outline and a larger circle behind it with red, yellow, and green trisection coloring from top to bottom left.

    Google has released version 56 of its web browser, based on the open-source Chromium web browser. There were 51 security-related bug fixes and one security researcher nabbed over thirty-thousand dollars ($30,000) for reporting some particularly nasty cross-site scripting (XSS) issues in Blink, Chrome’s rendering engine. Here are the other new and fixed features: For Users […]

  • Release: Firefox 51

    Mozilla Firefox web browser logo: an orange fox with yellow flames for a tail wrapped around a dark-blue globe.

    Mozilla has released version 51 of the open-source Firefox web browser. What can you expect from this release? For Users Save password prompt allows you to view the password before it is saved Zoom button added to the URL bar that displays the zoom level other than 100% – pressing the button returns to default […]

  • Browsers’ Interfaces Are Insecure

    Browser showing example.com with the information button rolled down over the content.

    As browsers continue to add new features, many of them need to notify or request confirmation from the user. These notifications and dialogs are showing outside the browser interface and appear inside or overtop of the content window (considered to be untrusted since any content can be displayed by developers). This means that content developers […]

  • Chrome Changes: Encryption Notification

    Google Chrome Browser Logo: Blue gradient circle with a thick white outline and a larger circle behind it with red, yellow, and green trisection coloring from top to bottom left.

    Google Chrome version 56 (based on the open-source Chromium web browser) is scheduled to be released at the end of the month. One of the major user-level changes is how sites without encryption will appear. Until now there has just been a lowercase letter “i” with a circle around it — this was typically an indicator […]

  • Google Chrome 55 Released

    Google Chrome Browser Logo: Blue gradient circle with a thick white outline and a larger circle behind it with red, yellow, and green trisection coloring from top to bottom left.

    Google has released version 55 of the Chrome web browser (based on the open-source Chromium browser) a few days early (was supposed to be released on the 6th). There was over $70,000 paid out to security experts, developers, and white-hat hackers for finding over 25 different security-related issues with the browser. Noteworthy features: async & […]

  • Safari… Sans Flash

    Apple's Safari Web Browser Logo: A compas with a blue background and the white & red needle pointing north-east.

    The new technology preview of the Apple’s WebKit-based Safari web browsers shows that they are removing Netscape Plugin Application Programming Interface (NPAPI) in an upcoming version of Safari.

  • Chrome Security Update: 45.0.2454.101

    Google Chrome Browser Logo: Blue gradient circle with a thick white outline and a larger circle behind it with red, yellow, and green trisection coloring from top to bottom left.

    Google has released a security update for it’s Chrome web browser. The new version, 45.0.2454.101, includes fixes for a reported cross-origin bypass that affects both the document object model (DOM) parser as well as the V8 JavaScript/ECMAScript engine. It is recommended that you update your browser to this version to prevent possible exploits. You can do so […]

  • Firefox: Stolen and Fixed

    Mozilla Firefox web browser logo: an orange fox with yellow flames for a tail wrapped around a dark-blue globe.

    Mozilla, an open-source software community run by the non-profit organization, Mozilla Corporation, and developers of the Firefox web browser, has announced it’s bug tracking software, Bugzilla, was hacked. The organization’s blog post states that the account that was compromised had access to privately-listed bugs representing zero-day security flaws in the browser. However, if you keep your browser […]