49 crypto-wallet pickpocketing browser extensions booted from the Chrome web store

Hackers have been using Google Ads to target unsuspecting cryptocurrency investors into installing malicious browser extensions, with the aim of stealing passphrases and private keys and draining funds from their wallets.

Read more in my article on the Hot for Security blog.

Dashlane password manager’s Chrome extension has disappeared

The Dashlane Password Manager browser extension was suddenly removed from the Chrome web store this weekend.

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles.

Read more in my article on the Hot for Security blog.

TV Licence website said it was secure. It wasn’t

The official UK TV licensing website was allowing licence purchasers to submit their personal identifiable information and bank details in unsafe, unencrypted plaintext.

Smashing Security podcast #094: Rogue browser extensions, Twitter presence, and how to cheat in exams

What’s the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show’s hosts is going to admit to cheating in their exams?

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist David McClelland.

Smashing Security podcast #067: Cyber stalking and gun control

Incognito mode on your browser not as private as you think, consumer spyware companies get hacked, Graham is accused of “multitasking” in his hotel room, and Carole champions the students of Parkland, Florida.

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast with computer security veterans Graham Cluley and Carole Theriault.

Do you trust your browser to save your credit card data and shipping info?

Technology could mean the end of sharing your credit card details with vendors.

David Bisson reports.

Bid farewell to your browsing data in the stock Android browsers – for better privacy

David Bisson explains how users of the stock Android brower can clear their caches, browsing history, and cookies for better privacy.

Why it’s a good idea to clear your browser history and cookies

David Bisson explains why you might want to consider deleting and clearing your browsing history and cookies every now and then.

Apple iCloud didn’t wipe ‘deleted’ browser histories for over a year

Researchers discovered it was possible to extract users’ Safari browsing history over a year after the user believed that they had deleted their browsing history.

Read more in my article on the Hot for Security blog.

Phishing and data theft await users due to target="_blank" vulnerability

Websites that sloppily implement the target=”_blank” attribute on links are leaving visitors open to data theft and phishing attacks.

David Bisson reports.

Android malware embeds into browsers, intercepts and changes URLs

Security researchers observe that some attackers are becoming more sophisticated, actively studying the structure of the operating system to launch more effective campaigns.

David Bisson reports.

Researcher warns of ‘pastejacking’ hack attacks targeting users’ clipboards

A security researcher has developed a “Pastejacking” proof-of-concept (POC) exploit that allows attackers to gain code execution by adding content to a user’s clipboard.

David Bisson reports.

How to monitor XSS attacks and other security threats on your website, in real-time

Security researcher Scott Helme describes how you can better secure your website from cross-site scripting attacks, ad injectors and malvertising.

Securing data needs to evolve beyond building moats around castles

Guest contributor Ramesh Rajagopal believes that security needs a rethink.

How to change Safari’s default search engine in iOS 8 for greater privacy

With iOS 8 you can switch your Safari browser’s search engine to alternatives such as DuckDuckGo. Find out why you might want to and, in fairness, why you might NOT want to…

Read more in my article for the We Live Security blog