Web Browser Security
- February 04, 2009
Version 3.0.6 fixes several memory corruption errors and cross-site scripting flaws that could be exploited by an attacker to gain access to critical files.
- January 05, 2009
VeriSign is moving completely to the new SHA-1 hash function to avoid a vulnerability affecting SSL certificates. Microsoft and Mozilla also weighed in on the problem.
- December 30, 2008
Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.
- December 17, 2008
The software giant repaired a dangerous flaw being exploited if a user browses some legitimate websites.
- December 17, 2008
The latest update also phases out support of Firefox 2.
- December 12, 2008
In an update to an earlier advisory, Microsoft warned that all versions of Internet Explorer are vulnerable to an attack on an unpatched XML handling flaw.
- December 11, 2008
The exploit was mistakenly released by a Chinese security team.
- December 09, 2008
Dangerous flaws could allow an attacker to access sensitive files and gain complete control of a computer. More than two dozen flaws were patched.
- November 21, 2008
Apple addressed a dozen iPhone and iPod Touch security issues, including dangerous flaws in its Safari browser that could allow an attacker to gain access to sensitive information.
- November 14, 2008
Mozilla and Apple addressed serious flaws in the Firefox and Safari browsers.
- October 10, 2008
Microsoft patches include critical updates for IE, Active Directory, Excel and Host Integration Server to fix vulnerabilities that could cause a remote code execution hack attack.
- October 08, 2008
Security researchers released details of the clickjacking attacks, warning of the seriousness of the problem because they have discovered multiple variants on the Web.
- October 06, 2008
The Chrome Web browser is a platform for Google Apps and as end users adopt Chrome, companies could lose control of sensitive corporate data.
- September 25, 2008
Called clickjacking, the technique enables the attacker to force a user to click on a specific link. Researchers say the technique has been underestimated.
- September 24, 2008
Firefox 3.0.2 fixes several vulnerabilities that could be remotely exploited by a hacker to gain access to sensitive data.