Collaborate Disseminate
A "privacy by compartmentalization" measure I used to implement in my day to day surfing was to separate each part into Firefox profiles. (Work, Study, Finance…)
Recently I learned about Firefox Containers. It would be way more… Continue reading Firefox containers vs profiles, how contained are they?
I am concerned about the security of my passwords while using Google Chrome extensions. Specifically, I’d like to know if it’s possible for a Chrome extension to read passwords that I enter on websites. I wanted to download an extension, b… Continue reading Could a Google Chrome extension read my password?
Browser extensions have become integral to our online experience. From productivity tools to entertainment add-ons, these small software modules offer customized features to suit individual preferences. Unfortunately, extensions can prove useful to malicious actors as well. Capitalizing on the favorable characteristics of an add-on, an attacker can leverage attributes like persistence, seamless installation, elevated privileges […]
The post New Fakext malware targets Latin American banks appeared first on Security Intelligence.
Continue reading New Fakext malware targets Latin American banks
Twice now, seemingly randomly, I’ve been redirected to an ad site.
I believe it has occurred both times when I have a new tab open, type what I’m searching for (Google is my default search engine), press enter and then end up on the ad pag… Continue reading How to determine which Chrome extension is re-directing me to ad sites
Regarding 2FA browser plugins, I follow the uneducated opinion that they usually provide sufficient security. Since a desktop computer is a unique device (even a virtual machine) and provides that required 2nd factor, you can use a 2FA bro… Continue reading Are 2FA browser plugins sufficiently secure?
Can one remotely log my IP, browser history, and saved passwords?
I think the IP should be easily done if one of the extensions load a remote JavaScript to run in my browser. I’m not sure about other stuff within the browser.
How can an end-user manually/locally update the code signature for an extension?
A Google Chrome extension broke 1 year ago due to Google Chrome’s new code signature. Users received errors like "can’t verify the identity of your web b… Continue reading How can I update an browser extension to use Google’s new code signature?
In its latest research, IBM Security Lab has observed a noticeable increase in campaigns related to malicious Chrome extensions, targeting Latin America with a focus on financial institutions, booking sites, and instant messaging. This trend is particularly concerning considering Chrome is one of the most widely used web browsers globally, with a market share of […]
The post The rise of malicious Chrome extensions targeting Latin America appeared first on Security Intelligence.
Continue reading The rise of malicious Chrome extensions targeting Latin America
I use Nekoray to set up proxies for my Windows system.
When I connect to those proxies, does using a browser-based proxy with HTTPS encryption secure my transferred data through the web browser?
Can my ISP or the Nekoray proxies see the UR… Continue reading Can a browser-based HTTPS proxy secure browsing data while using a system-level proxy?
How to check if a Firefox add-on is malicious ?
I’m interested about this one currently : https://addons.mozilla.org/en-US/firefox/addon/istilldontcareaboutcookies/
It got a Github repo
Continue reading How to check if a Firefox add-on is malicious?