HackDig : Dig high-quality web security articles

DNS-over-HTTPS takes another small step towards global domination

Firefox recently announced that it will be rolling out DNS-over-HTTPS (or DoH) soon to one percent of its Canadian users as part of its partnership with CIRA (the Canadian Internet Registration Authority), the Ontario-based organization responsible for managing the .ca top-level domain for Canada and a local DoH provider. The rollout will begin on 20 July un
Publish At:2021-07-12 11:39 | Read:171 | Comments:0 | Tags:Privacy Byron Holland Canadian Internet Registration Authori

What is Incognito mode? Our private browsing 101

Incognito mode is the name of Google Chrome’s private browsing mode, but it’s also become the catch-all term used to describe this type of web surfing, regardless of the browser being used. Some call it Private Mode, others call it Private Browsing. Apple almost certainly got there first, yet Chrome’s 2008 creation has largely become the generic name for all
Publish At:2021-05-25 14:33 | Read:411 | Comments:0 | Tags:Privacy Apple browser chrome cookies Edge firefox Google inc

Analysis of HSTS Caches of Different Browsers

The Reason I recently stumbled upon a strange behavior in my Firefox: I visited an HTTPS-enabled website that I had visited before and saw that my Firefox connected insecurely via HTTP. I found that strange because nowadays, most websites set the HSTS header, which is supposed to force the browser to connect via HTTPS. I checked whether this website set the
Publish At:2021-05-06 11:09 | Read:379 | Comments:0 | Tags:Misc browser Chrome Firefox forensics HSTS Safari

Chrome users, here’s how to opt out of the Google FLoC trial

Two weeks after Google launched a trial to replace run-of-the-mill online user tracking with new-fangled online user tracking, several companies and organizations have pushed back, criticizing the new technology—called FLoC—which is designed to respect people’s privacy more, as a detriment to user privacy. The good news is that, if you want to escap
Publish At:2021-04-15 15:39 | Read:453 | Comments:0 | Tags:Privacy Apple Brave DuckDuckGo DuckDuckGo browser extension

Will Google’s Privacy Sandbox take the bite out of tracking cookies?

Third-party cookies have been the lynchpin of online advertising for many years. Plans to phase cookies out forever continue to run at a steady pace, with Google in the driving seat. In 2019, it announced its vision for a “Privacy Sandbox”. The building blocks for this were essentially: Most aspects of the web need money to survive, and advertising that r
Publish At:2021-03-06 15:24 | Read:714 | Comments:0 | Tags:Privacy ad networks advertiser analytics Apple browser chrom

Browser sync—what are the risks of turning it on?

Modern browsers include synchronization features (like Google Chrome’s Sync) so that all your browsers, on all your devices, share the same tabs, passwords, plugins, and other features. While this is certainly convenient, particularly when you’re migrating to a new device, synchronizing browsers also comes with some risks. What is browser sync
Publish At:2021-02-03 18:24 | Read:863 | Comments:0 | Tags:Privacy bookmarks browlock browser browsers byob chrome chro

Why Data Privacy Day matters: A Lock and Code special with Mozilla, DuckDuckGo, and EFF

You can read our full-length blog here about the importance of Data Privacy Day and data privacy in general Today is a special day, not just because January 28 marks Data Privacy Day in the United States and in several countries across the world, but because it also marks the return of our hit podcast Lock and Code, which closed out last year with an epis
Publish At:2021-01-28 06:24 | Read:710 | Comments:0 | Tags:Podcast Browser guard browser plugins data broker data broke

3 tips to top up your privacy

It’s Data Privacy Day—the perennial event that many internet users may have never heard of, but have strong feelings and opinions about the very things that birthed it in the first place. Originally created to help businesses learn about why online privacy matters, its reach has since extended to other public organizations, governments, communities,
Publish At:2021-01-28 06:24 | Read:974 | Comments:0 | Tags:Privacy Brave browser browser privacy data privacy day DPD f

Google and Mozilla fixed issues exploited at 2020 Tianfu Cup hacking contest

Mozilla and Google have already fixed the critical flaws in Firefox and Chrome exploited by bug bounty hunters at 2020 Tianfu Cup hacking contest. Mozilla and Google have already addressed the critical Firefox and Chrome vulnerabilities that were recently exploited by white hat hackers at the 2020 Tianfu Cup hacking contest. The vulnerability in Chrome
Publish At:2020-11-11 15:41 | Read:1109 | Comments:0 | Tags:Breaking News Hacking Security 2020 Tianfu Cup Chrome Firefo

Mozilla patches critical security issues in Firefox and Thunderbird

Mozilla has issued a critical patch for Firefox, Firefox ESR, and Thunderbird after a security issue was discovered at the Tianfu Cup 2020 International Cybersecurity Contest The security issue has been assigned CVE-2020-26950 which has the “reserved” status. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures
Publish At:2020-11-10 14:47 | Read:906 | Comments:0 | Tags:Exploits and vulnerabilities buffer overflow cve-2020-26950

Mozilla offers rewards for Bypassing Firefox Exploit Mitigations

Mozilla has expanded its bug bounty program including rewards for bypass methods for the exploit mitigations and security features in Firefox. Mozilla announced this week that it has expanded its bug bounty program with a new category that focuses on bypass methods for the exploit mitigations, security features, and defense-in-depth measures implemented i
Publish At:2020-08-21 12:58 | Read:1340 | Comments:0 | Tags:Breaking News Security Bug Bounty Firefox Hacking hacking ne

Firefox 79 is out – it’s a double-update month so patch now!

byPaul DucklinYou’ve probably heard of a Blue Moon, which is the second full moon in any calendar month.The last one was back in 2018; the next one is coming up in October 2020.Well, 28 July 2020 is a Blue Firefox Update event – the second major security fix of the month, given that Mozilla now uses an every-four-weeks-on-Tuesday rhythm, and Fire
Publish At:2020-07-28 14:27 | Read:1264 | Comments:0 | Tags:Firefox Mozilla ASLR update

Monday review – the hot stories of the week

byNaked Security writer Get yourself up to date with everything we've written in the last seven days – it's weekly roundup time. Monday 6 July 2020 Boston bans government use of facial recognition Tuesday 7 July 2020 Company web
Publish At:2020-07-13 06:25 | Read:1122 | Comments:0 | Tags:Weekly Summary EARN-IT Firefox Hushpuppi Law and Order monda

Cisco Talos discloses technicals details of Chrome, Firefox flaws

Cisco’s Talos experts disclosed the details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. Researchers from Cisco Talos disclosed technical details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. The first issue, tracked as CVE-2020-6463, is a memory corruption vulne
Publish At:2020-07-05 09:50 | Read:1976 | Comments:0 | Tags:Breaking News Hacking Security Chrome Firefox hacking news i

Cisco disclosed technical details for Firefox code execution flaw

Cisco Talos experts released technical details on a recently addressed vulnerability in Firefox that could be exploited for code execution. Security experts from Cisco Talos have released technical details on a recently addressed vulnerability in Firefox, tracked as CVE-2020-12405, that could be exploited by attackers for remote code execution. The iss
Publish At:2020-06-11 07:12 | Read:1394 | Comments:0 | Tags:Breaking News Hacking CVE-2020-12405 Firefox IT Pierluigi Pa

Tag Cloud