Browsers And Security

Blocking entry: Browsers offer prime attack vector

Blocking entry: Browsers offer prime attack vector

By

Web browsers have become today's de facto operating system -- the single place where end-users spend most of their time. As such, they're ground zero for attacks. Technology, though, is coming to the rescue.

Microsoft set to release nine patches for 10 security bugs

By

Microsoft is prepping fixes for 10 vulnerabilities, with researchers' expecting the highest-priority fixes to involve issues in Internet Explorer and Exchange.

Twenty-six bugs patched in Google Chrome 21 release

By

The release of Google Chrome 21 features 26 patched vulnerabilities, six which are classified by the company as "high-priority."

Mozilla's Firefox browser now encrypts Google searches

Mozilla's Firefox browser now encrypts Google searches

By

The latest version of Mozilla's popular Firefox browser has expanded its security features.

Microsoft patches IE, RDP security vulnerabilities

By

As part of its regularly scheduled patch release, Microsoft issued fixes for gaping vulnerabilities in Internet Explorer and Remote Desktop Protocol. The software giant also released a new feature that, in the wake of the Flame virus, enables certificates to be automatically updated.

New Windows 8 preview shows off browser privacy

By

Microsoft on Thursday made available its Windows 8 Release Preview, the final development step before the official version is released later this year.

Google to help rid PCs of trojan that will prevent web access

By

With a July 9 deadline looming for machines infected with the DNSChanger trojan to still be able to access the internet, Google is lending a helping hand to inform users of compromise.

Firefox and Opera unveil new security, privacy features

By

Firefox's update includes a new auto-update capability, while Opera's new release contains functionality to prevent the tracking of online users by websites.

Mozilla greenlights encrypted Google search by default

By

Mozilla, which controls roughly a quarter of the browser market, plans to turn on encrypted Google search by default for Firefox users, according to release notes.

Safari update plugs scores of holes

By

Apple late Monday released a new version of its Safari browser to patch a record number of vulnerabilities, many of which could lead to code execution if a user visits a malicious website.

New Chrome version contains malware download security

By

Google has issued an official update to its Chrome browser to fill 20 security holes, one of which is deemed "critical" and eight of which are considered "high" in severity.

Chrome adds malware download warning functionality

By

A new beta version of the Google Chrome browser contains malware download protection.

At 10 years old, Internet Explorer 6 is almost an artifact

By

Internet Explorer 6 (IE 6) usage has dropped below one percent in the United States, Microsoft announced Tuesday. Security is a big reason being used to encourage users to update.

Mozilla fixes crash issue after new Firefox version issued

By

One day after releasing version 9 of its Firefox web browser, Mozilla on Wednesday issued Firefox 9.0.1 to address an issue that caused Windows, Mac and Linux users' browsers to crash.

Microsoft to begin silently updating IE in 2012

By

Borrowing a page from other web browser manufacturers, Microsoft soon will automatically upgrade Windows customers to the latest version of IE.

Google releases Chrome update to fix high-risk security bug

By

Google on Wednesday released Chrome 15.0.874.121 to address a high-severity vulnerability affecting the V8 JavaScript engine that could allow for the execution of arbitrary code.

Firefox updates for security, user add-on control

By

Mozilla joined Microsoft and Adobe with security software updates on Tuesday.

Google closes 18 Chrome holes

By

Google on Tuesday pushed out a new version of its Chrome web browser to rectify 18 vulnerablities, including 11 that are deemed "high" in severity. Version 15, part of the "stable" channel of Chrome, also includes protection against Browser Exploit Against SSL/TLS (BEAST), a JavaScript hacking tool disclosed last month at a security conference in Argentina that can decrypt HTTPS requests and encrypted cookies. Microsoft has since issued an advisory that acknowledges the issue, along with a Fix-It solution. Meanwhile, researchers who disclosed the flaws in Chrome received more than $26,000 combined for their finds as part of Google's bug bounty program.

Bug may enable remote code execution in Chrome

By

Google Chrome suffers from a security flaw that could allow an attacker to silently execute remote code on a target machine, but the tech giant doesn't view the issue as much of a threat.

Internet Explorer fixes get top billing in Microsoft update

By

Microsoft on Tuesday released eight fixes to address 23 vulnerabilities that lie across its software and operating system components.

Mozilla releases Firefox 7.0.1 to fix add-on issue

By

Mozilla released an update for its Firefox browser to address what it called a "rare" bug that caused add-ons to be hidden for some users after upgrading to version 7.

Mozilla's newest release closes 10 memory bugs

By

Mozilla on Tuesday released version 6 of its Firefox web browser, in the process closing 10 vulnerabilities. "Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort, at least some of these could be exploited to run arbitrary code," according to a security advisory. Mozilla also upgraded its Thunderbird email and news client and SeaMonkey internet suite.

Web browsers offer more protection than you may think

Web browsers offer more protection than you may think

Browser security has come a long way in recent years, and utilizing certain features can help stave off attacks. Our author calls out three browsers he thinks stands above the rest in protecting you against threats and safeguarding your privacy.

Massive Safari update fixes dozens of security flaws

By

Along with the release of its latest platform, OS X Lion, Apple this week issued a new version of its Safari web browser, closing dozens of security flaws.

One of two responsible for AT&T iPad breach pleads guilty

By

A San Francisco man who was charged with exploiting a flaw on the AT&T website to obtain personal information about Apple iPad subscribers has pleaded guilty, prosecutors said Thursday.

Mozilla releases Firefox 5, ends support for version 4

By

The latest version of Mozilla's Firefox web browser, version 5, was released on Tuesday with fixes for a number of vulnerabilities that could allow an attacker to crash a victim's browser, run arbitrary code on their computer, steal data or perform cross-site scripting attacks. Mozilla also fixed several security vulnerabilities in Firefox 3.6 this week, but ended support for Firefox 4, which was released just three months ago and received its only update, Firefox 4.0.1, in April. Users of Firefox 4 are being advised to upgrade to Firefox 5.

Exploits begin for patched Internet Explorer bug

By

Attackers are now actively exploiting one of the 11 Internet Explorer (IE) vulnerabilities patched Tuesday by Microsoft, a Symantec researcher said Friday

Microsoft's 16 patches include one for "cookiejacking"

By

Microsoft is prepping a large security update for Tuesday, with plans to deliver 16 patches to fix 34 vulnerabilities across its product line.

Apple delivers updates related to Comodo, Pwn2Own

By

Apple released a number of security updates for Mac OS X, Safari and iOS.

Microsoft distributes 17 patches for 64 flaws

By

The software giant ranks fixes for Internet Explorer, SMB as the month's most pressing.

Sign up to our newsletters

POLL