Tagged: security

firefox logo

Firefox to add Tor anti-fingerprinting called letterboxing

Mozilla is scheduled to add a new user anti-fingerprinting technique to Firefox with the release of version 67, scheduled for mid-May this year. Advertising networks often sniff certain browser features, such as the window size to create user profiles and track users as they resize their browser and move across new URLs and browser tabs. Called “letterboxing,” this new technique adds “gray spaces” to...

windows 7 logo

Windows 7 being exploited due to critical Chrome bug

Google security officials are advising Windows users to ensure they’re using the latest version 10 of the Microsoft operating system to protect themselves against a “serious” unpatched vulnerability that attackers have been actively exploiting in the wild. Unidentified attackers have been combining an exploit for the unpatched local privilege escalation in Windows with one for a separate security flaw in the Chrome browser that...

chrome logo

Google urges users to update Chrome immediately

Google is urging users to update Chrome across all platforms after a critical vulnerability was discovered and patched. The vulnerability exploits a security flaw known as CVE-2019-5786. The security flaw is a memory management issue in Chrome’s FileReader which gives hackers the opportunity to inject and execute malicious code. Security researchers at Google and Microsoft have observed attackers using a combination of a patched...

firefox logo

Mozilla blocks Facebook trackers and other privacy invaders

When Facebook users learned last March about Facebook trackers and that the social media giant had given their sensitive information to political-data firm Cambridge Analytica, Mozilla (parent company of the security-focused browser Firefox) reacted fast: Within eight hours, the product team had built a browser extension called the Facebook Container. The plug-in, now the most popular browser extension Mozilla has ever built (1.5 million...

firefox logo

Mozilla matches donations made to Tor project

Firefox parent Mozilla is returning to back the Tor Project, its long-time ally, after it committed to matching all donations made to fund Tor, the open source initiative to improve online privacy which has just started its annual end of year funding drive. Tor announced Mozilla’s support today, extending the pair’s partnership which last year helped Tor raise over $400,000 from a similar campaign last...

apple logo

Apple blocks GrayKey on iOS 12

Earlier this year, Apple updated iOS to block passcode cracking tools like GrayKey (used by police and government law enforcement officers). But the original iOS 11.4.1 patch wasn’t perfect, with researchers still finding ways around it. That seems to have changed with the release of iOS 12 last month, which a recent Forbes report notes appears to have completely blocked the GrayKey tool, preventing...

yahoo logo

Yahoo has to pay 50 million in damages

Yahoo has agreed to pay $50 million in damages and provide two years of free credit-monitoring services to 200 million people whose email addresses and other personal information were stolen as part of the biggest security breach in history. The restitution hinges on federal court approval of a settlement filed late Monday in a 2-year-old lawsuit seeking to hold Yahoo accountable for digital burglaries...

firefox logo

Project Fusion aims to bring Super Private mode to Firefox

The Tor Project announced that it’s working with Mozilla to integrate Tor into Firefox. Eventually, this should completely eliminate the need for the Tor Browser, as most of its features would be merged into Firefox’s new “super-private mode.” Tor Browser Development Largely Redundant The Tor Browser is based on the Extended Support Release (ESR) version of Firefox, because it’s a more stable development cycle...

android logo

Android P security and privacy changes

Google is slowly pulling back the curtains on its next-gen Android P release. Yesterday, we got our first glimpse at a work-in-progress, developer-focused preview of the software — and today, we’re getting a closer look at what exactly is new when it comes to Android P and the ever-evolving subject of Android security. Here’s the inside scoop on what you can expect: More controlled...

linux logo

Linux USB driver security issue

USB drivers included in the Linux kernel are rife with security flaws that in some cases can be exploited to run untrusted code and take over users’ computers. The vast majority of these vulnerabilities came to light on Monday, when Google security expert Andrey Konovalov informed the Linux community of 14 vulnerabilities he found in the Linux kernel USB subsystem. “All of them can...