Is a browser less secure if more people like to hack it? Is it OK to ignore alerts simply because you get too many? Do you back yourself to spot every single phish? And just how smart is the Google Play Store? Chester and Duck dissect these issues with their usual style in this week’s Chet Chat podcast…
Naked Security – Sophos
 TechCentral.ie |
Gamma International disguised FinSpy program as popular Web browser, report …
TechCentral.ie The move comes after computer security researchers said on Tuesday that they discovered that a well-known spyware program called FinSpy was spoofing Firefox. Mozilla was alerted by the researchers, who are with Citizen Lab, a research project that is … |
Be careful what you type on your computer while surfing the Web. It very well could be funneled to a script kiddie who has appropriated a handful of lines of code and inserted it into his site.
The hack has been possible for years, but two proofs of concept published this month graphically demonstrate just how easy it is for even savvy people to fall for it. Both demonstrations use JavaScript to hijack the search command found in all standard browsers. The script is activated when a user presses the ctrl+f or ⌘+f keys, causing whatever is typed after that to be sent to a server under the control of the website operator rather than to the browser’s search box.
Proofs of concept here and here show how this method could be used to trick people into divulging their password or credit card number respectively. The pages pose as lists that catalog leaked user data and invite visitors to search it to see if their information is included.
Read 7 remaining paragraphs | Comments
 Ars Technica |
Your smartphone browser: A ZOMBIE in password-crunching botnet
Register However security researchers from North Carolina State University and the University of Oregon have found a way to exploit "cloud browser" services, using the Puffin and Cloud Browse apps that are available for Android and iOS. Cloud browsers are … Hack could let browsers use cloud to carry out big attacks on the cheap |
