Browser Security News

While developing Zlap I accidentally ran my test HTML file from my local machine. I was using the XMLHttpRequest(), commonly used in AJAX software, that is built into FireFox. The request I was making was to a PHP file that was also on my local machine and it returned the full contents of said file. […]

Secunia Research has discovered a weakness in Opera, which can be exploited to display the SSL certificate from a trusted site on an untrusted site.
The weakness is caused due to Opera not resetting the SSL security bar after displaying a download dialog from a SSL enabled web site. This allows an untrusted web site to […]

A UK developer who goes by “Tones” has created a Flock-specific extension that puts Meebo, and therefore Yahoo, AIM, Gtalk and MSN IM, directly into a sidebar in the Flock browser (the extension also works for Firefox). Since Flock and Meebo are two startups I use, this looked interesting.

Security analysts Wednesday warned users of a pair of unpatched bugs in Microsoft’s popular Internet Explorer browser that may soon be in play because proof-of-concept code has gone public for both.
The two vulnerabilities have been detailed on the Full Disclosure security mailing list, and were the root of alerts issued by the SANS Institute’s Internet […]

Kvetching about Microsoft security flaws is so 2002.
That thought came to mind today when I read a misleading and disingenuous post by Firefox evangelist Asa Dotzler. Now, Asa just got back from a trip halfway around the world. So I’m going to assume that it was jet lag that caused him to write and […]

The UK’s Metropolitan Police Computer Crime Unit, and Finland’s National Bureau of Investigation have broken up a gang of malware writers, arresting three men. The arrested include a 63-year-old man from Suffolk, 28-year-old Scottish man and a 19-year-old in Finland.
The three were suspected of being members of the “M00P” virus-writing group, although according to senior […]

One of the many new security features introduced with the Microsoft’s new Internet Explorer 7 web browser is the Anti-Phishing Filter. This will be a welcome security addition for most users as phishers are targeting more and more people, trying to lure them into giving up their passwords, account details and credit card numbers.
How well […]

A California company better known for "sandbox" style security aimed at enterprises on Tuesday launched consumer software that puts Internet Explorer in a protected virtual machine. The approach blocks some malware from reaching the operating system and lets users "wipe" the browser slate clean to return IE to a pristine state.
GreenBorder Technologies’ same-named GreenBorder Pro […]

I’ve been a diehard Firefox user sense before Beta 1. I wrote my Firefox Guide earlier this year, once that page hit Slashdot there were several comments about how Opera does all of that and more, without the need of the extensions that Firefox has. I put a mental note that I should check this […]

A free Web browser that bills itself as a tool for privacy protection is, in fact, a click-fraud engine for pornographic Web sites, security vendor Panda Software warned today. Security firm Panda Software says that Browsezilla secretly visits pornographic Web sites if you use the browser. A free Web browser that bills itself as a […]