#WebBrowsers

0.0.0.0 Day: 18-Year-Old Browser Vulnerability Impacts MacOS and Linux Devices

by

August 8, 2024 at 10:15AM Cybersecurity researchers have found a critical “0.0.0.0 Day” vulnerability impacting major web browsers, potentially allowing malicious actors to access local network services. The flaw arises from inconsistent security mechanisms and affects Google Chrome/Chromium, Mozilla Firefox, and Apple Safari on MacOS and Linux. Web browsers are expected to block access to … Read more

Meet clickjacking’s slicker cousin, ‘gesture jacking,’ aka ‘cross window forgery’

by

April 3, 2024 at 02:42AM Clickjacking, an attack technique repurposing web page elements, poses ongoing challenges for browsers and developers. The latest variation, “cross window forgery,” leverages user gestures to execute attacks, with potential for account takeovers. Browser makers continue efforts to reduce risks, while experts recommend defensive measures, such as randomizing ID tag values … Read more