Hackers Infect Magento Shops With Malware Through Extension Flaw
|
Tag Archive for: extension
Severe vulnerability in Cisco’s WebEx extension for Chrome leaves PCs open to easy attack
Anyone who uses the popular Cisco WebEx extension for Chrome should update to the latest version pronto. Google security researcher Tavis Ormandy recently discovered a serious vulnerability in the Chrome extension that leaves PCs wide open to attack.
In older versions of the extension (before version 1.0.3) malicious actors could add a “magic string” to a web address or file hosted on a website. The magic string was designed to remotely activate the WebEx browser extension. Once the extension was activated the bad guys could execute malicious code on the target machine.
To read this article in full or to leave a comment, please click here
Adobe Acrobat auto-installed a vulnerable Chrome extension on Windows PCs
Adobe is no stranger to finding itself in the security headlines for all the wrong reasons, and it seems that things may not be changing as we enter 2017.
Read more in my article on the Tripwire State of Security blog.
Dump Trump! A Chrome extension to censor “The Donald” from the web
Hackers have tried deleting Trump’s Wikipedia page and knocking his website offline. Now there’s a much simpler, and perfectly legal, way to erase Trump from the internet.
Naked Security – Sophos