Security News

When SecureRandom()... isn't: JavaScript fingered for poking cash-spilling holes in Bitcoin wallets
2018-04-12 23:57

If you've got an old money store, check it for hacked gaps Concerns about a flawed crypto library that could allow Bitcoin theft have been revived following a post to a Bitcoin mailing list last week.…

Google's warning: Time's up for JavaScript dialogs that trap you with 'Sure you want to leave?' pop-ups (ZDNet)
2017-03-30 17:49

Apple iOS 10.3 Fixes Safari Flaw Used in JavaScript-based Ransomware Campaign (The Hackers News)
2017-03-28 05:33

If you own an iPhone or iPad, it's possible you could see popup windows in a sort of endless cycle on your Safari browser, revealing your browser has been locked and asking you to pay a fee to...

Apple urged to legalize code injection: Let apps do JavaScript hot-fixes (The Register)
2017-03-14 23:14

Today's WWW is built on pillars of sand: Buggy, exploitable JavaScript libs are everywhere (The Register)
2017-03-14 09:19

An insecure mess: How flawed JavaScript is turning web into a hacker's playground (ZDNet)
2017-03-10 14:27

Researchers bypass ASLR protection with simple JavaScript code (Help Net Security)
2017-02-15 20:41

A group of researchers from the Systems and Network Security Group at VU Amsterdam have discovered a way to bypass address space layout randomization (ASLR) protections of major operating systems...

Researchers Break ASLR Protection via JavaScript Attack (SecurityWeek)
2017-02-15 17:22

New ASLR-busting JavaScript is about to make drive-by exploits much nastier (ArsTechnica)
2017-02-15 07:22

ASLR-security-busting JavaScript hack demo'd by university boffins (The Register)
2017-02-14 23:52