Browser Security News

Apple yesterday added anti-phishing protection to Safari, the last major browser to receive the feature that blocks known identity-stealing sites. The company also patched 11 security bugs in the program, the bulk of them specific to the Microsoft Windows version.

The battle for your in-box shows no signs of waning. Despite the efforts of software companies large and small, spammers and phishers continue to find and exploit weaknesses in junk-mail filters at the server and client levels.

A vulnerability in Microsoft’s Internet Explorer (IE) browser could help fraudsters make phishing websites appear legitimate, a security researcher reported Wednesday. The flaw lies in the way IE7 processes a locally stored HTML error message page that is typically shown when the user cancels the loading of a webpage, said Aviv Raff, a security researcher […]

SecureIX launched last year with almost no hype surrounding it. Even we only came to know of it recently. Why something so seemingly important went unnoticed, is unknown. What SecureIX offers is a whole package of ’secure services’. An IMAP/POP SSL-enabled e-mail account with PGP encryption and 1 GB storage, Usenet newsgroup access, and an […]

This update addresses an issue experienced by some users where CPU usage is high when they are navigating a page that contains multiple frames or when multiple frames are navigated simultaneously. This occurs when the phishing filter evaluates the page for each navigation, resulting in multiple simultaneous evaluations for the same page. If you have […]

The CA/Browser Forum wants to bring increased safety to web banking and e-commerce by developing a new digital certificate that can better verify a site’s legitimacy. The technology is already included in Internet Explorer 7 and Opera 8 and certainly looks like a step in the right direction—for the companies that are able to get […]

It seems like every time people get together to do something about a security problem, other people get together to whine about it.
Now they’re whining about EV (Extended Validation) SSL Certificates: EV certs are a scheme by Microsoft to screw other browser vendors. They’re an attempt by certificate authorities to gouge Web site operators. They’re […]

Opera Software today introduced real-time Fraud Protection in its award-winning Web browser. Fraud Protection includes technology from GeoTrust, the leading digital certificate provider, and PhishTank, a collaborative clearing house for data and information about phishing on the Internet. Fraud Protection is available in Opera 9.1, the newest version of Opera’s Web browser. Opera is available […]

Just as we’re experiencing a marked decline in computer virus and spyware activity during 2006–thanks in part to antispyware protection built into the latest antivirus solutions–there’s been a marked uptick in phishing activity. According to the Anti-Phishing Workgroup, the number of new phishing sites increased 25 percent from August to September of this year. Yet […]

Some users had reported that the new phishing filter had been slowing down the PC’s performance as IE evaluated the security of Web pages that contained a lot of frames.
"When you use Windows Internet Explorer 7 to visit a Web page, the computer may respond very slowly as the phishing filter evaluates Web page contents," […]