Security

Ad-injecting trojan targets Mac users on Safari, Firefox, and Chrome

Ad-injecting trojan targets Mac users on Safari, Firefox, and Chrome  arstechnica.com/apple/2013/03/ad-injecting-trojan-targets-mac-users-on-safari-firefox-and-chrome/ ” It’s not a particularly sophisticated malware, but the fact that there is a piece of code sitting in the browser and monitoring every single piece of information is scary and dangerous, Botezatu said. Criminals can change their approach at any time, and while they may be injecting ads today, tomorrow, they could switch to injecting exploit code or directing users to phishing sites and drive-by-download attack sites. The malware’s structure can also be modified to display malvertisements or steal browser cookies, Botezatu said. “It’s also not limited to…

Read More

How to make Firefox the Fort Knox of browsers

While this is written about Firefox some of the tips listed would apply to any browser. “Whenever you hop on to the Internet you are facing dangers. While it is relatively safe on popular sites such as Facebook or Google, it is possible that you are deceived even there. On Facebook, it may be a link that someone posted and that you are dying to follow (Justin Bieber did this, the Pope is dead), and on Google, you may for instance be deceived by advertisement. Once you wander off those well lighted paths on the Internet, things may turn to…

Read More

Firefox 19.0.1 & 17.0.4esr/19.0.2

Mozilla released an emergency update for Firefox on March 7th, 2013 with versions 17.0.4esr and 19.0.2 to desktop users. This release addresses issues in regards to security advisory MFSA 2013-29. Mozilla also released Firefox 19.0.1 back on February 27th, 2013 to Windows 8 users only to address stability issues with some AMD Radeon HD Graphics cards. Depending on their update settings (Tools > Options… > Advanced > Update Tab), users will be prompted to update within in the next 48-hours. Users can also go to Help > About Firefox and click the Check for Updates button or go to getfirefox.com…

Read More

Firefox plugins management guide

“… a brief overview of what plugins are, how you can use them, enable or disable them, stay up to date on the security front, debug problems, and whatnot. This should be an interesting exercise, although most of you are already well familiar with the topic, so I apologize for being boring in advance. … “ Source: Dedoimedo.com  Firefox plugins management guide Go get it.

Read More

No More Firefox 10.0esr Support

A reminder support for Firefox 10.0esr branch ended with the release of Firefox 10.0.12esr released on January 8, 2013. Organizations should have moved over to the 17.0esr branch during the 6-week support “grace period” (November 20th to January 8th).

Read More

Update Your Flash

08 February 2013 “Adobe has released security updates for its Flash Player on Windows and Mac OS X to address two critical vulnerabilities. The emergency release was necessary because, Adobe says, both vulnerabilities were being exploited in the wild in attacks on Windows and Mac systems. Fixes are also available for Linux and Android systems and should be installed as soon as possible, as the vulnerabilities allow attackers to take control of affected systems. …” Source: The H Security: News and Features Details  Adobe patches two Flash Player zero day holes

Read More

Oracle releases emergency patches for Java

02 February 2013 “Of the fifty vulnerabilities, twenty-six of them are rated at the highest CVSS level (10.0) and two at 9.3. “ Source: The H Open: News and Features Details  Oracle releases emergency patches for Java

Read More

Mozilla pulling plug on auto-running nearly all plugins

” By default, Firefox will, in future, only automatically run the content of the most recent version of Flash – all other plugins will default to “Click to Play”. The changes, announced on Mozilla’s security blog as a way to put users back in control of plugins, will increase the security and stability of Firefox. “ 30 January 2013 Source: The H Open: News and Features More  Mozilla pulling plug on auto-running nearly all plugins Go get it.

Read More