Posts Tagged ‘javascript’

Chrome’s JavaScript Popup Handling Changes

Friday, March 31st, 2017

It’s surprising that Chrome has taken so long to implement changes that protect users from malicious pop-up ads; Firefox took care of this problem years ago.

Google implemented a change in Chrome’s JavaScript popup handling behavior recently that restricts JavaScript popups. The change, which landed in Chrome Canary and Dev already, improves the handling of JavaScript alert(), confirm() and prompt() dialogs that pages may throw in the browser. Chrome up until now, and that is still true for Chrome Stable and Beta, handled these JavaScript dialogs per browser-window.

(more…)

Full LastPass 4.1.42 Exploit Discovered

Tuesday, March 21st, 2017

Password managers must make an incredibly tempting target for hackers. Heads up, LastPass users!

Tavis Ormandy, a prolific member of Google’s Project Zero initiative, revealed that he discovered a new security issue in LastPass 4.1.42 (and maybe earlier). Ormandy revealed that he discovered an exploit, but did not reveal it. Project Zero discoveries are reported to the companies who produce the affected products. The companies have 90 days to react, usually by creating a new product version that they make available publicly to all customers.

(more…)

Researchers Develop Cross-Browser Fingerprinting Technique

Tuesday, February 14th, 2017

So you thought you could fool the snoops by switching browsers from time to time? Think again.

Researchers have developed a cross-browser fingerprinting technique that uses operating system and hardware level features. Fingerprinting has been limited for the most part to individual web browsers in the past. If a user switched browsers regularly, fingerprinting could not be used to link the user to these browsers.

(more…)

Prevent Copy Text Manipulation in Chrome

Wednesday, May 25th, 2016

If you’ve ever copied text from a web page, and then pasted the text elsewhere only to find that the text has been altered, you’ll probably appreciate these Chrome extensions.

Websites and services can use JavaScript, and other technologies such as Flash if available, to manipulate text that is copied to the clipboard by users. Some sites use the feature to add a copyright note to the copied text while others may prevent copy operations to the clipboard entirely by erasing the copied contents before they reach the clipboard.

(more…)

Chromodo Browser has Serious Security Issues

Wednesday, February 3rd, 2016

It’s faster than Chrome and more private than Chrome, but apparently Chromodo also has substantial security problems.

Comodo’s Internet web browser Chromodo, based on Chromium, has significant security issues according to a Google Security Research report that puts its users at risk while using it. When Google launched its Chrome web browser years ago, several third-party companies created their own version of the browser by modifying specific settings of it that would improve user privacy.

(more…)

NoScript Script Surrogates explained

Tuesday, December 1st, 2015

Here’s a quick, basic overview of Firefox’s NoScript Surrogates add-on …

This guide looks at NoScript’s Script Surrogates functionality, explains how you can add or remove surrogates from the popular Firefox add-on, and explains what the feature is being used for. Most Internet users who have heard about NoScript associate it with the blocking of scripts on sites that the user visits in the browser. That’s correct, but NoScript is more powerful than that as it offers several other security features and settings worth taking a look at.

(more…)

Microsoft’s Proof-of-Concept JavaScript Browser is Built using HTML, JavaScript and CSS

Wednesday, September 16th, 2015

While Microsoft’s JavasScript Browser might not be practical for most users (yet,) it’s definitely an interesting experiment and also provides a peek at one of many directions in which browsers might be heading in the future.

Surprise, surprise. Microsoft released a new web browser yesterday that is not Internet Explorer or Microsoft Edge. The Windows Store page of the JavaScript Browser went live yesterday evening. The new browser is compatible with the company’s Windows 10 operating system which means that Windows 8.x users won’t find it listed in Store when they search for it.

(more…)

How to Check the Security of Proxy Servers

Thursday, June 25th, 2015

There are very few things in life that are truly free, and when it comes to free proxy services, it’s a good idea to know just what that “free” services actually costs you.

A recent study of 443 free proxy servers by Austrian security researcher Christian Haschek ended with the conclusion that free is not necessarily a good thing, at least when it comes to the majority of proxy servers analyzed in the study. Web proxies come in different flavors but the two groups that you will encounter the most are proxies that you use on web pages and proxies that you add to your browser directly.

(more…)

Disallow Scripts Temporarily on Web Pages in Firefox

Thursday, January 15th, 2015

On one hand, Scripts can be annoying, but on the other, it’s actually kind of fun to be able to defeat them sometimes.

The majority of websites that you visit load one or multiple scripts. Scripts, usually based on JavaScript code, serve a variety of purposes that include powering site functionality, displaying advertisement or tracking users. There are scripts that are outright annoying or even malicious. A site that is loading new popups whenever you close the old one, another that auto-refreshes in short intervals, and a third that redirects you automatically to another version or site.

(more…)

Firefox 34 – Here’s what’s New

Tuesday, December 2nd, 2014

Another week and another update to Firefox. At this rate, they’ll be up to Firefox 153 in no time at all.

Mozilla is rolling out updates for specific versions of the web browser. If you are running a non-stable build you may have already received updates last week as Mozilla postponed the release of the stable version and the ESR version by one week to get additional development time to stabilize development. This means that stable users will receive the upgrade to version 34, Beta users to 35, Developer Edition (former Aurora) users to version 36, and Nightly users to 37.

(more…)