Security News

Google fixes ninth Chrome zero-day tagged as exploited this year
2024-08-21 21:43

​​Today, Google released a new Chrome emergency security update to patch a zero-day vulnerability, the ninth one tagged as exploited this year. [...]

Google fixes ninth Chrome zero-day exploited in attacks this year
2024-08-21 21:43

​​Today, Google released a new Chrome emergency security update to patch a zero-day vulnerability, the ninth one exploited in attacks this year. [...]

Chrome will redact credit cards, passwords when you share Android screen
2024-08-18 18:00

Google will redact your credit card details, passwords and other sensitive information in Chrome when you're sharing or recording your screen on Android. [...]

Week in review: MS Office flaw may leak NTLM hashes, malicious Chrome, Edge browser extensions
2024-08-18 08:00

Unpatched MS Office flaw may leak NTLM hashes to attackersA new MS Office zero-day vulnerability can be exploited by attackers to grab users' NTLM hashes, Microsoft has shared late last week. Key metrics for monitoring and improving ZTNA implementationsIn this Help Net Security interview, Dean Hamilton, CTO at Wilson Perumal & Company, discusses the complexities of zero trust network access implementation, focusing on balancing security with operational efficiency.

Chrome, Edge users beset by malicious extensions that can’t be easily removed
2024-08-12 13:29

A widespread campaign featuring a malicious installer that saddles users with difficult-to-remove malicious Chrome and Edge browser extensions has been spotted by researchers. "The trojan malware contains different deliverables ranging from simple adware extensions that hijack searches to more sophisticated malicious scripts that deliver local extensions to steal private data and execute various commands," the Reason Labs research team says.

New Malware Hits 300,000 Users with Rogue Chrome and Edge Extensions
2024-08-10 14:30

An ongoing, widespread malware campaign has been observed installing rogue Google Chrome and Microsoft Edge extensions via a trojan distributed via fake websites masquerading as popular software....

Malware force-installs Chrome extensions on 300,000 browsers, patches DLLs
2024-08-09 15:19

An ongoing and widespread malware campaign force-installed malicious Google Chrome and Microsoft Edge browser extensions in over 300,000 browsers, modifying the browser's executables to hijack...

“0.0.0.0-Day” vulnerability affects Chrome, Safari and Firefox
2024-08-09 09:58

A "0.0.0.0-Day" vulnerability affecting Chrome, Safari and Firefox can be - and has been - exploited by attackers to gain access to services on internal networks, Oligo Security researchers have revealed. The vulnerability stems from how those popular browsers handle network requests from external, public websites, and may allow attackers to change settings, gain access to protected information, uploading malicious models, or even achieve remote code execution.

18-year-old security flaw in Firefox and Chrome exploited in attacks
2024-08-08 16:28

A vulnerability disclosed 18 years ago, dubbed "0.0.0.0 Day", allows malicious websites to bypass security in Google Chrome, Mozilla Firefox, and Apple Safari and interact with services on a local...

Google Chrome will let you send money to your favourite website
2024-08-06 19:15

Google has confirmed plans to implement Web Monetization in Chrome, allowing website owners to receive micro-payments as tips or rewards for their content as an additional way to generate revenue. [...]