Malicious browser extensions are hijacking Facebook accounts
Facebook users – especially those in Brazil – are being targeted with malicious browser extensions trying to hijack Facebook profiles, warns Microsoft. So far, …
IE8 0-day used in watering hole attacks
Last week a U.S. Department of Labor website was discovered to be redirecting users to sites serving a hard-to-detect variant Poison Ivy backdoor Trojan. Researchers are now …
Firefox enhances private browsing
Mozilla released Firefox 20 that fixes several security and stability issues. Included in the update are eleven critical security updates. Firefox includes a new enhancement …
Ransomware uses browser history to persuade users to pay up
A new ransomware variant dubbed Kovter has been spotted trying out a brand new approach for convincing targeted users of the legitimacy of its claims. According a malware …
Safari now blocks all but latest version of Flash plugin
With all the Flash Player and Java zero-day vulnerabilities lately getting exploited in attacks, browser vendors are trying to come up with solutions to protect their users …
Qualys enhances its free cloud service BrowserCheck Business Edition
Qualys announced at RSA Conference 2013 that Qualys BrowserCheck Business Edition, the company’s free cloud service, now gives organizations end-to-end automation for …
Rogue Chrome extension hijacks Facebook accounts
Chrome users, beware of an extension by the name of “Business Flash Player”. According to Bitdefender senior e-threat analyst Bogdan Botezatu, the link to download …
Adobe patches Acrobat and Reader, Mozilla debuts Firefox built-in PDF viewer
Adobe has pushed out the announced update for Acrobat and Reader that patches the two vulnerabilities that were recently exploited in attacks in the wild. But, the popularity …
Malicious Chrome extensions promoted via Facebook
Malicious Chrome extensions are lurking on the official Chrome Web Store, warns Kaspersky Lab Expert Fabio Assolini, and the campaign for leading users to them starts on …
Video: History of the JavaScript security arsenal
In 2006 we had the first JavaScript port scanner. The same year we saw the incarnation of more advanced tools such as AttackAPI, Carnaval and Backframe. A year later we saw …
Spoofed Google Chrome update page serves malware
Malware peddlers are taking advantage of yesterday’s release of the latest version of Google Chrome and have already set up a spoofed page of the initial rollout page in …
Firefox 18 released, fixes security issues
Mozilla released Firefox 18 that fixes several security and stability issues. Included in the update are twelve critical, seven high and one moderate security update. Fixed in …
Featured news
Resources
Don't miss
- Browser-in-the-Browser phishing is on the rise: Here’s how to spot it
- Enterprise security faces a three-front war: cybercrime, AI misuse, and supply chains
- Rakuten Viber CISO/CTO on balancing encryption, abuse prevention, and platform resilience
- Turning cyber metrics into decisions leaders can act on
- Teaching cybersecurity by letting students break things