Archive for the ‘Web browser security’ Category
Security researchers have discovered a chip flaw that could nullify hacking protections for millions of devices regardless of their operating system or application running on them, and the worse — the flaw can not be entirely fixed with any mere software update.
The vulnerability resides in the way the memory management unit (MMU), a component of many CPUs, works and leads to bypass the
Ormandy notes that “all shortcuts are replaced with Chromodo links and all settings, cookies, etc are imported from Chrome. They also hijack DNS settings, among other shady practices.”
What If, Same Origin Policy is Disabled
To understand this, assume you are logged into Facebook and somehow visits a malicious website in another tab.
- Steal session authentication cookies.
- Perform malicious actions through script code.
- Even Replace trusted websites with attacker-created HTML design.
How to Check, If your Browser has SOP Enabled/Disabled
Well, here’s some terrible news for all Apple iOS users…
Someone just found an iOS zero-day vulnerability that could allow an attacker to remotely hack your iPhone running the latest version of iOS, i.e. iOS 9.
Yes, an unknown group of hackers has sold a zero-day vulnerability to Zerodium, a startup by French-based company Vupen that Buys and Sells zero-day exploits.
And Guess what,
Posted in Apple iOS 9, browser hacking, Bug Bounty Program, hacking iphone, hacking news, iOS 9.0 jailbreak, iphone hack, jailbreak, Vulnerability, Vupen, Web browser security, Zero-Day Vulnerability, zerodium | Comments (0)
Remember when it took only 13 characters to crash Chrome browser instantly? This time, it takes 16-character simple URL string of text to crash Google Chrome instantly.
Yes, you can crash the latest version of Chrome browser with just a simple tiny URL.
To do this, all you need to do is follow one of these tricks:
Type a 16-character link and hit enter
Click on a 16-character link
Google, Apple, Microsoft, and Mozilla have joined hands to create code for use in the future web browsers that promises up to 20 times faster performance.
Dubbed WebAssembly (or wasm for short), a project to create a new portable bytecode for the Web that will be more efficient for both desktop as well as mobile web browsers to parse than the complete source code of a Web page or an
A serious security vulnerability has been uncovered in Apple’s Safari web browser that could trick Safari users into visiting a malicious website with the genuine web address.
A group of researchers, known as Deusen, has demonstrated how the address spoofing vulnerability could be exploited by hackers to fool victim into thinking they are visiting a trusted website when actually the Safari