Firefox
Patch EVERYTHING: Widely Used ‘WebP’ Code has Critical Bug
Richi Jennings | | Buffer Overflow, buffer overflow attack, Buffer Overflow Vulnerabilities, buffer overflows, Chrome, Chromium, edge, Electron, Exploitable Vulnerabilities, Firefox, google, Heap Overflow, libwebp, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, opera, SB Blogwatch, secure software supply chain, slack, software supply chain, software supply chain hygiene, software supply chain risk, Software Supply Chain risks, software supply chain security, Software Supply Chain Security Risks, thunderbird, WebP
WebP FAIL. Critical vuln in libwebp: Go get updates to Chrome, Firefox, Edge, Slack and more ...
Security Boulevard
How to Stop Online Tracking: 3 New Ways
Tom Eston | | Advertisers, advice, Apple, Chrome, Cybersecurity, Data Brokers, Data Privacy, Digital Privacy, DuckDuckGo, Enhanced Tracking Protection, Episodes, Firefox, Information Security, Infosec, Online Tracking, Podcast, Privacy, privacy settings, Safari, Search Engine, security, Startpage, technology, tips, web browser, Weekly Edition
In this episode host Tom Eston discusses one of the biggest privacy concerns people have today, online tracking by companies and advertisers. Tom will cover the following topics, tips, and new techniques ...
Spyware Vendor’s Heliconia Framework Exploits Browser Vulnerabilities
A company in Barcelona that purports to offer custom security solutions is tied to exploitation frameworks that can deploy spyware. Variston IT’s “Heliconia framework exploits n-day vulnerabilities in Chrome, Firefox and Microsoft ...
Security Boulevard
Bipartisan Digital-Privacy Bill, Delete Your Data Before Selling Your Car, Firefox Total Cookie Protection
Tom Eston | | Car, Car Dealer, Congress, Cybersecurity, Data Brokers, Data Privacy, Digital Privacy, Episodes, Firefox, GPS, Information Security, Infosec, Mozilla, Navigation System, Podcast, Privacy, Privacy Legislation, security, technology, Total Cookie Protection, tracking, US Congress, Weekly Edition
A new bipartisan privacy bill, the American Data Privacy and Protection Act, “could” be the first privacy legislation in the US not doomed to fail, a story about why you should delete ...
Targeted Dream Incubation, TikTok Data Sharing, Chrome and Firefox Updates
Tom Eston | | china, Chinese, Chrome, Cybersecurity, Digital Privacy, Dream Hacking, Dream Incubation, Dreams, Episodes, facebook, Firefox, google, Google Chrome, HTTPS-first, Infosec, Mozilla, Podcast, Privacy, security, technology, TikTok, Weekly Edition
Is dream hacking the next big privacy concern or just a new marketing gimmick? Some people may be surprised that TikTok shares data with China, and details on Google Chrome adding HTTPS-first ...
Fake Chrome Extensions: Google Asleep at the Switch
Richi Jennings | | fake Google Chrome extension, Firefox, Microsoft Authenticator, SB Blogwatch, Who authenticates the authenticators?
That “Microsoft Authenticator” extension you installed is actually malware, designed to phish for your passwords ...
Security Boulevard
New HTTPS-Only Mode Offers Secure Browsing to Firefox 83 Users
Want to ensure your browser uses only secure HTTPS connections? Check out Firefox’s new HTTPS-Only Mode Here at Hashed Out, we like to try to keep you abreast of some... The post ...
NSA Data Collection Ruling, Browsing History Identification, Ambulance Chasing
Tom Eston | | Ambulance Chasing, Browsing History, Cybersecurity, Digital Privacy, Edward Snowden, EFF, Episodes, Firefox, Mozilla, nsa, Podcast, Privacy, Public Records, Weekly Edition
In episode 137 for September 7th 2020: A federal appeals court finds the NSA’s bulk collection of phone data was unlawful, new research shows that browsing histories are unique enough to reliably ...
Firefox Send Used to Spread Malware, Mozilla Temporarily Stops the Service
Mozilla suspended the Firefox Send service after it received reports that it was used by bad actors to host and send malware to unsuspecting users. Firefox Send is a service that lets ...
DNS over TLS and DNS over HTTPS
Jamie Brim | | Brave, Chrome, CloudFlare, Cobalt Strike, Command And Control, Corelight Labs, dns, DoH, DoT, Firefox, Godlua, goDoH, HTTPS, json, json+https, Malware, network security monitoring, network traffic analysis, opera, PsiXbot, TLS, TLS 1.3, Zeek
By Jamie Brim, Corelight Security Researcher In this post, we’ll explore DNS over TLS (DoT) and DNS over HTTPS (DoH). DoT and DoH were invented to address privacy concerns associated with cleartext ...