Google Chrome

bitdefender.com

Automatic 4K/HD for YouTube extension pulled from Chrome Store for pop-up ad abuse

A popular browser extension has been removed by Google from the Chrome Web Store after it started spamming users with irritating pop-up advertisements.

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

Google Chrome extension warns if your password has been leaked

Google has released an optional extension for its Chrome browser that will trigger a visual warning if it determines you are using a username/password combination that it knows to be unsafe.

Read more in my article on the Tripwire State of Security blog.


0 sec read

tripwire.com

Malicious Chrome extension which sloppily spied on academics believed to originate from North Korea

Computer users are being reminded once again to take care over the browser extensions they install after security experts discovered a hacking campaign that has been targeting academic institutions since at least May 2018.

Read more in my article on the Tripwire State of Security blog.


0 sec read

bitdefender.com

Search for Chrome on Bing, and you might get a nasty surprise

It’s 2018, and you can still end up with your computer compromised by searching for Google Chrome in Microsoft Bing.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #094: Rogue browser extensions, Twitter presence, and how to cheat in exams

What’s the danger when browser extensions go bad? Is Twitter sharing your online status a boon for stalkers? And which of the show’s hosts is going to admit to cheating in their exams?

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault, joined this week by technology journalist David McClelland.


1 min read

If an extension goes rogue, everything you do in your browser is compromised

The official Chrome browser extension for Mega.nz was compromised with a malicious update, stealing passwords and private keys.

Keep your browser extensions to a minimum, and always be wary if they ask for elevated permissions.


2 min read

Smashing Security #088: PayPal’s Venmo app even makes your drug purchases public

Not one of Google’s 85,000 employees has had their accounts compromised by phishing in a year.  How have they done it? Find out in this podcast.

Also, we discuss with special guest Scott Helme how websites still using HTTP are now marked as “not secure” by Google Chrome, and if you’re buying drugs via PayPal’s Venmo app you should say goodbye to privacy.

All this and much much more is discussed in the latest edition of the award-winning “Smashing Security” podcast hosted by computer security veterans Graham Cluley and Carole Theriault.


1 min read

Google Chrome users met with ‘Not secure’ warnings when visiting HTTP sites

If you’re still running a website that is using insecure HTTP then it’s probably too late.

Some of your website’s visitors are going to be greeted with a message that tells them that they can’t trust your website to be secure.


1 min read

welivesecurity.com

All HTTP websites to soon be marked as ‘not secure’ by Google Chrome

If you’re still running a website that is using insecure HTTP then it’s time to wake up and drink the coffee.

Because unless you take action soon, you’re going to find many of your visitors are going to distrust your website.

Read more in my article on the We Live Security blog.


0 sec read

bitdefender.com

Security hole meant Grammarly would fix your typos, but let snoopers read your private writings

A Google vulnerability researcher has found a gaping security hole in a popular web browser extension, that could have potentially exposed your private writings on the internet.

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

How to make your Google account more secure than ever before

Google Advanced Protection isn’t for everyone. But for high-risk Google accounts it’s a must.

Read more in my article on the Tripwire State of Security blog.


0 sec read

PornHub visitors hit with malware attack via poisoned ads

Poisoned ads served up by the X-rated adult PornHub site tricked users into installing malicious browser updates.


50 sec read

Smashing Security podcast #046: Good beard bad beard

Bearded man entangled in dark web drugs market bust, Google researches how to make browser security warnings less confusing, and “bedroom entertainment systems” (ahem) probed for security holes.

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Rich Baldry.


58 sec read

bitdefender.com

First ever crypto-mining Chrome extension discovered

A Chrome browser extension, with over 140,000 users, is gobbling up the resources of users’ computers by secretly mining for virtual cash.

Read more in my article on the Hot for Security blog.


0 sec read

tripwire.com

Hackers hijack popular Chrome extension to inject code into web developers’ browsers

Criminals hacked into a developer’s account, and modified a Chrome browser extension used by over a million people to push unwanted adverts.

Read more in my article on the Tripwire State of Security blog.


0 sec read

How to clear the cache, cookies, and browsing data in Chrome

David Bisson explains how Google Chrome users can clear their caches, browsing history, and cookies for better privacy.


1 min read