browser

bitdefender.com

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles.

Read more in my article on the Hot for Security blog.


0 sec read

TV Licence website said it was secure. It wasn’t

The official UK TV licensing website was allowing licence purchasers to submit their personal identifiable information and bank details in unsafe, unencrypted plaintext.


2 min read

Smashing Security #094: Rogue browser extensions, Twitter presence, and how to cheat in exams

What’s the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show’s hosts is going to admit to cheating in their exams?

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist David McClelland.


1 min read

Smashing Security #067: Cyber stalking and gun control

Incognito mode on your browser not as private as you think, consumer spyware companies get hacked, Graham is accused of “multitasking” in his hotel room, and Carole champions the students of Parkland, Florida.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast with computer security veterans Graham Cluley and Carole Theriault.


1 min read

Do you trust your browser to save your credit card data and shipping info?

Technology could mean the end of sharing your credit card details with vendors.

David Bisson reports.


1 min read

Bid farewell to your browsing data in the stock Android browsers – for better privacy

David Bisson explains how users of the stock Android brower can clear their caches, browsing history, and cookies for better privacy.


1 min read

Why it’s a good idea to clear your browser history and cookies

David Bisson explains why you might want to consider deleting and clearing your browsing history and cookies every now and then.


3 min read

bitdefender.com

Apple iCloud didn’t wipe ‘deleted’ browser histories for over a year

Researchers discovered it was possible to extract users’ Safari browsing history over a year after the user believed that they had deleted their browsing history.

Read more in my article on the Hot for Security blog.


0 sec read

Phishing and data theft await users due to target="_blank" vulnerability

Websites that sloppily implement the target=”_blank” attribute on links are leaving visitors open to data theft and phishing attacks.

David Bisson reports.


1 min read

Android malware embeds into browsers, intercepts and changes URLs

Security researchers observe that some attackers are becoming more sophisticated, actively studying the structure of the operating system to launch more effective campaigns.

David Bisson reports.


2 min read

Researcher warns of ‘pastejacking’ hack attacks targeting users’ clipboards

A security researcher has developed a “Pastejacking” proof-of-concept (POC) exploit that allows attackers to gain code execution by adding content to a user’s clipboard.

David Bisson reports.


1 min read

How to monitor XSS attacks and other security threats on your website, in real-time

Security researcher Scott Helme describes how you can better secure your website from cross-site scripting attacks, ad injectors and malvertising.


2 min read

Securing data needs to evolve beyond building moats around castles

Guest contributor Ramesh Rajagopal believes that security needs a rethink.


2 min read

welivesecurity.com

How to change Safari’s default search engine in iOS 8 for greater privacy

With iOS 8 you can switch your Safari browser’s search engine to alternatives such as DuckDuckGo. Find out why you might want to and, in fairness, why you might NOT want to…

Read more in my article for the We Live Security blog


0 sec read

Sell Hack, the controversial plugin that offered to uncover LinkedIn email addresses, shuts down for now

Sell Hack, the controversial browser extension that promised to reveal LinkedIn users’ private email addresses has been shut down by its makers (at least temporarily) after they received a cease & desist order from the business networking site.


1 min read

LinkedIn warns of Sell Hack browser plugin that claims to reveal hidden email addresses

It sounds like a stalker’s or recruitment advisor’s wet dream, but there are good reasons to be wary of the “Sell Hack” tool that offers to reveal any LinkedIn user’s email address.


2 min read