Archive for the ‘chrome’ Category

An ancient Chrome tab trick just blew my mind

August 15th, 2017

If your browser is a catastrophe of tabs as mine is—I currently have six Chrome windows across three monitors with more than 100 tabs open, because tabs are the new bookmarks—then this thing I just discovered may be life-changing. (Though it’s certainly not new.)

We all know that you can tear a tab off the tab bar to drag it into a new window (or drag it into a different tab bar to move it from window to window). What if I told you that you can use the standard selection modifiers—ctrl-click for multiple non-contiguous tabs, shift-click for multiple contiguous tabs—to tear off entire groups of related tabs in a single action?

Because believe it or not, you can.

Read 2 remaining paragraphs | Comments

Posted in browsers, chrome, Tech, user interface | Comments (0)

Chrome Flaw Allows Sites to Secretly Record Audio/Video Without Indication

May 30th, 2017

What if your laptop is listening to everything that is being said during your phone calls or other people near your laptop and even recording video of your surrounding without your knowledge?

Sounds really scary! Isn’t it? But this scenario is not only possible but is hell easy to accomplish.

A UX design flaw in the Google’s Chrome browser could allow malicious websites to record audio or

Posted in chrome, Google Chrome, hacking news, Peer-to-Peer, web browser, webcam, webcam hacking, webcam hijacking, WebRTC Protocol | Comments (0)

Browser AutoFill Feature Can Leak Your Personal Information to Hackers

January 11th, 2017

Just like most of you, I too really hate filling out web forms, especially on mobile devices.

To help make this whole process faster, Google Chrome and other major browsers offer “Autofill” feature that automatically fills out web form based on data you have previously entered in similar fields.

However, it turns out that an attacker can use this autofill feature against you and trick you

Posted in browser auto-complete, browser autofill, browser hacking, chrome, Firefox, hacking browser, hacking news, hacking web browser, phishing attack | Comments (0)

The Chrome extension that “Firesheeps” you by choice

November 28th, 2016

This Chrome extension shares your session tokens instead of your passwords – but that’s still a risky idea and we suggest you avoid it.

Posted in AccessURL, chrome, data loss, firesheep | Comments (0)

Google Fixes Four Critical Vulnerabilities in Latest Chrome Build

March 25th, 2016

Google pushed out the latest version of Chrome Thursday afternoon, fixing five issues, four of them critical.

Posted in browser, Browser vulnerabilities, chrome, Google Chrome, PWN2OWN, vulnerabilities, Web Security | Comments (0)

Comodo’s so-called ‘Secure Internet Browser’ Comes with Disabled Security Features

February 3rd, 2016
comodo-web-browser-security

Beware Comodo Users!

Have you Safeguarded your PC with a Comodo Antivirus? Then you need to inspect your system for privacy and security concerns.
First of all, make sure whether your default browser had been changed to “Chromodo” — a free browser offered by Comodo Antivirus.
If your head nod is “Yes,” then you could be at risk!
Chromodo browser, which is supplied along with the installation of Comodo Anti-Virus Software and marketed as ‘Private Internet Browser’ for better security and privacy, automatically overrides system settings to set itself as your ‘Default Browser.’
And secondly, the main security concern about Comodo Antivirus is that the Chromodo browser has ‘Same Origin Policy’ (SOP) disabled by default.
Google’s security researcher Tavis Ormandy, recently shouted at Comodo for disabling SOP by default in its browser settings that violates one of the strongest browser security policy.

Ormandy notes that “all shortcuts are replaced with Chromodo links and all settings, cookies, etc are imported from Chrome. They also hijack DNS settings, among other shady practices.”

Moreover, this is a total unethical movement to change default browser settings without users’ knowledge.
Same Origin Policy (SOP) is one of the browser security policies that permits scripts running in a web browser to only make requests to pages on the same domain.
If enabled, Same Origin Policy will prevent malicious scripts on one page from obtaining access to sensitive data on another web page.

What If, Same Origin Policy is Disabled

chromodo-browser

To understand this, assume you are logged into Facebook and somehow visits a malicious website in another tab.

With SOP disabled, various malicious script files on that website could take over the control of your Facebook profile, allowing malicious actors to compromise your account with access to your private messages, post status updates, etc.
The same thing Comodo is doing with its users, by default disabling SOP in Chromodo that could allow attackers to:
  • Steal session authentication cookies.
  • Perform malicious actions through script code.
  • Even Replace trusted websites with attacker-created HTML design.

How to Check, If your Browser has SOP Enabled/Disabled

If you are still unsure whether your browser is SOP disabled, then visit this link.
If you are getting a prompt as “Browser appears to be fine,” then you are out of danger.
But, if you are getting a negative approach such as “Your browser is not enforcing the SOP,” you are advised to migrate to other browsers such as Chrome or Firefox for your self-defense against any malicious attack.
Stay Safe! Safe Tuned!

Posted in chrome, Chromodo, comodo antivirus, hacking news, same origin policy, Same Origin Policy Bypass, secure web browser, web browser, Web browser security | Comments (0)

Block potential Star Wars: The Force Awakens spoilers with this Chrome add-on

December 15th, 2015

As you may have heard, this week a new Star Wars film is coming out. Chances are, it may even be good. Or, if you’re as excited about The Force Awakens as I am, you know it will be good. The trouble is, between now and the time that most people see the film this Thursday, the Internet will be awash with chatter from the film’s recent premiere in Los Angeles, and from early press screenings. There’s a chance, however unlikely, that said chatter will say the film is bad.

Obviously, those people will be wrong. Fortunately, the Internet has come up with a way of blocking naysayers and negative nancys until the rest of us can watch the film and give it the positive reception it so clearly deserves. A new Chrome extension, Force Block: the Star Wars spoiler blocker, blocks pages containing what it thinks might be spoilers for Star Wars: The Force Awakens, replacing them with various Star Wars quotes. There’s even a whitelist should any regular Star Wars content get blocked.

Having just tried out the extension on a Guardian article about the premiere, I can confirm it works as described. You can of course choose to ignore the spoiler warning and continue to view the content, but remember that for most part, these people will all wrong and in reality Star Wars: The Force Awakens is the best Star Wars since Star Wars. Definitely.

Read 2 remaining paragraphs | Comments

Posted in chrome, spoilers, Star Wars, star wars the force awakens, The Multiverse | Comments (0)