Security News

Comprehensive Guide to Building a Strong Browser Security Program

2024-11-13 11:00

The rise of SaaS and cloud-based work environments has fundamentally altered the cyber risk landscape. With more than 90% of organizational network traffic flowing through browsers and web...

#browser #security

Opera Browser Fixes Big Security Hole That Could Have Exposed Your Information

2024-10-30 13:05

A now-patched security flaw in the Opera web browser could have enabled a malicious extension to gain unauthorized, full access to private APIs. The attack, codenamed CrossBarking, could have made...

#browser #opera #security

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

2024-10-18 05:42

Microsoft has disclosed details about a now-patched security flaw in Apple's Transparency, Consent, and Control (TCC) framework in macOS that has likely come under exploitation to get around a...

#browser #macos #microsoft #privacy #safari #vulnerability #CVE-2024-44133

Firefox Zero-Day Under Attack: Update Your Browser Immediately

2024-10-10 04:24

Mozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild. The vulnerability, tracked as...

#attack #browser #firefox #update #zeroday #CVE-2024-9680

Fake browser updates spread updated WarmCookie malware

2024-10-02 18:22

A new 'FakeUpdate' campaign targeting users in France leverages compromised websites to show fake browser and application updates that spread a new version of the WarmCookie malware. [...]

#browser #malware #update

Arc browser launches bug bounty program after fixing RCE bug

2024-10-01 22:33

The Browser Company has introduced an Arc Bug Bounty Program to encourage security researchers to report vulnerabilities to the project and receive rewards. [...]

#bounty #browser #bugbounty #RCE

Necro Android Malware Found in Popular Camera and Browser Apps on Play Store

2024-09-24 16:13

Altered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version of a known malware loader called Necro. Kaspersky said some of...

#android #browser #malware #playstore

Malware locks browser in kiosk mode to steal Google credentials

2024-09-14 14:09

A malware campaign uses the unusual method of locking users in their browser's kiosk mode to annoy them into entering their Google credentials, which are then stolen by information-stealing malware. [...]

#browser #credential #google #malware

Qilin ransomware now steals credentials from Chrome browsers

2024-08-22 21:40

The Qilin ransomware group has been using a new tactic and deploys a custom stealer to steal account credentials stored in Google Chrome browser. [...]

#browser #chrome #credential #ransomware

Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions

2024-08-18 08:00

Unpatched MS Office flaw may leak NTLM hashes to attackersA new MS Office zero-day vulnerability can be exploited by attackers to grab users' NTLM hashes, Microsoft has shared late last week. Key metrics for monitoring and improving ZTNA implementationsIn this Help Net Security interview, Dean Hamilton, CTO at Wilson Perumal & Company, discusses the complexities of zero trust network access implementation, focusing on balancing security with operational efficiency.

#browser #chrome #edge #leak #ntlm #office

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News