Firefox Flaw Facilitates Deception

Firefox engineers are busy trying to fix a bug that prevents the browser from flagging Web addresses that have been disguised.

Disguising or obfuscating a Web address (URL) is a tactic employed by malware distributors to increase the likelihood of enticing potential victims to malicious Web sites.

Modern browsers commonly attempt to see through obfuscation techniques to identify unsafe Web addresses. But Firefox misses obfuscated URLs inside of iFrames, blocks of HTML code that add content to a Web page from a third party's server.

Continue reading; InformationWeek

Comments

Post a Comment

Popular posts from this blog

KEPONG Gangster甲洞

Image
“ KEPONG ”, a famous local Chinese gang/gangster neighbourhood, is a story about five young men whom are best friends that join a gangster and then faces the reality of gangster life with financial problem, drugs, power and so on, ending up breaking their friendship and bad consequences. From the left: Rayz, Melvin, Hero, Henley & Billy. Although the theme of the film mainly focus on the story of the gangster, however, it still indirectly convey a positive message to the teenage, to highlight to them not to involve in any such activities which might ruin their bright future. The Kepong movie introduce: Director: Teng Bee Casts: Melvin Sia, Henley Hii, Hero Tai and Aunty Lai Meng Genre: Gangsterism, Teenager Release date: 13 September 2012
Read more

Azusa Aida makes her 13th appearance

Image
So what do you do with 21 girls? Hold a Gravure Idol contest that’s what. At Toshimaen Pool, Sankei Sports and One Eight Promotions held their “Visual Queen Photography event in Toshimaen 2010.” 1200 fans were entertained by the girls in their bikinis and other costumes. Azusa Aida made her 13th appearance at the event. She advertised her new DVD that will be released 8/25 and hopes that many people will purchase it. More photo visit; Tokyohive
Read more

Google plugs 'high risk' Chrome browser holes

Image
Google has shipped another Chrome browser update to fix multiple security security vulnerabilities. Some of these security holes can be exploited by malicious people to conduct spoofing attacks, bypass certain security restrictions, and potentially compromise a user’s system, according to this Secunia advisory.Secunia rates this a “highly critical” update. According to this basic documentation, there are a total of 11 vulnerabilities in this patch batch. Google is withholding details on most of the serious vulnerabilities until the majority of Chrome users are fully patches. Some of the flaws affect Linux users only. Here’s what we know: [48225] [51727] (Medium-risk) Possible autofill / autocomplete profile spamming. [48857] (High-risk) Crash with forms. [50428] (Critical) Browser crash with form autofill. Credit to the Chromium development community. Continue reading
Read more