Security News

Google warns devs as it tightens Chrome cookie security: Stuff will break if you're not clued up
2019-10-24 14:15

You'll have to tag those for cross-site use from February Google is asking developers to get ready for more secure cookie settings to be implemented in Chrome 80 that is planned for release in...

Too bad, so sad, exploit devs: Google patches possibly several million dollars' worth of security flaws in Android
2019-09-05 23:43

Except one – a 'your phone is now my phone' bug reported months ago and still not fixed Google this week emitted the September edition of its monthly Android security updates – and has left at...

No REST for the wicked: Ruby gem hacked to siphon passwords, secrets from web devs
2019-08-20 21:21

Developer account cracked due to credential reuse, source tampered with and released to hundreds of programmers An old version of a Ruby software package called rest-client that was modified and...

Vim devs fix system-pwning text editor bug
2019-06-13 14:02

Diehard text editor users everywhere breathed a sigh of relief this week as the open source community fixed a bug in one of the most venerable *nix programs: Vim.

Devs slam Microsoft for injecting tech-support scam ads into their Windows Store apps
2019-06-04 05:06

Redmond kinda just shrugs after advertising systems sling scareware pop-ups at users Application makers are crying foul after some of their programs distributed via the Windows Store pops open...

Chrome extension devs must drop deceptive installation tactics
2019-05-31 09:41

After announcing its intention to limit third-party developers’ access to Chrome’s webRequest API, which is used by many ad-blocking extensions to filter out content, Google has followed up with...

Freelance devs: Oh, you wanted the app to be secure? The job spec didn't mention that
2019-03-11 06:14

Boffins find pros-for-hire no better at writing secure code than compsci beginners Freelance developers hired to implement password-based security systems do so about as effectively as computer...

As netizens, devs scream bloody murder over Chrome ad-block block, Googlers insist: It's not set in stone (yet)
2019-01-23 22:11

Advertising giant insists it's all still on drawing board – as plugin devs face code rewrites Analysis Following uproar from developers and netizens over proposed changes to Chrome that threaten...

Open-source devs: Wget off your bloated festive behinds and patch this user cred-blabbing bug
2019-01-02 11:36

New year, new security fails, new CVE Happy New Year! Oh, and if you include GNU's wget utility in software you write, pull down the new version released on Boxing Day and push out updates to your users.…

Twitter: Don't panic, but we may have leaked your DMs to rando devs
2018-09-21 21:45

Internet outrage mobile insists year-long API bug would have been super-hard to exploit Twitter is in full damage control mode after disclosing that it may have inappropriately exposed some...