Browser Extensions: Are They Worth the Risk?

Popular file-sharing site Mega.nz is warning users that cybercriminals hacked its browser extension for Google Chrome so that any usernames and passwords submitted through the browser were copied and forwarded to a rogue server in Ukraine. This attack serves as a fresh reminder that legitimate browser extensions can and periodically do fall into the wrong hands, and that it makes good security sense to limit your exposure to such attacks by getting rid of extensions that are no longer useful or actively maintained by developers.

Link: https://krebsonsecurity.com/2018/09/browser-extensions-are-they-worth-the-risk/

Fortnite, Netflix, & Black Hat – Application Security Weekly #30

In the Application security news, ‘Fortnite’ developer had sharp words for Google after an Exploit was discovered, PHP flaw puts WordPress sites at risk, Oracle will charge for Java starting in 2019, how Netflix does Failovers in 7 minutes flat, hacking Black Hat, Burp Suite 2.0 Beta released, Windows 95 running in Electron, and more! […]
The post Fortnite, Netflix, & Black Hat – Application Security Weekly #30 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/w8UfqaV17lc/

Burp Suite 2.0, DNC, and NotPetya – Paul’s Security Weekly #572

The Untold story of NotPetya, New Apache Struts RCE Flaw, How door cameras are creating dilemmas for police, Google gets sued for tracking you even when your location history is off, and Artificial Whiskey is coming, and one company is betting you’ll drink up. Paul’s Stories Artificial whiskey is coming, and one company is betting […]
The post Burp Suite 2.0, DNC, and NotPetya – Paul’s Security Weekly #572 appeared first on Security Weekly.

Link: http://feedproxy.google.com/~r/securityweekly/Lviv/~3/PfCllL5Ri8Q/