Tag Archives: Google Chrome

10Fold- Security Never Sleeps- 143

Google Just Discovered A Massive Web Leak… And You Might Want To Change All Your Passwords

“Perhaps most dangerous leak of the year so far”

A leak that may end up exposing the user passwords of many popular platforms and applications has been uncovered by a Google researcher recently. Major services indicated to be vulnerable may include Uber, FitBit, and OKCupid.

Beware Google Chrome scam that could inject malware into your computer

“Cybersecurity experts still concerned over continued threat”

A Google Chrome malware program still poses a threat to users after several months of circulation. Proofpoint has officially warned hackers that the program can inject script into inefficiently protected pages, targeting Chrome browsers specifically. It will then rewrite the compromised website to the affected users browser, making the page unreadable and provides a fake issue for the user to resolve,

Stop using SHA1: It’s now completely unsafe

“First real-world collision against SHA-1 hash”

Security researchers have now witnessed the first collision against the SHA-1 hash function, resulting in the duplication of a PDF file with the same signature. The algorithm’s security-sensitive functions are now entirely vulnerable, and should not be used for any secure files.

Enjoy your read? Check out our other content here.

10Fold- Security Never Sleeps- 136

Virulent Android malware returns

“Over 2 million downloads on Google Play”

A strain of malware that had infected over 10 million Android devices in 2016 has been making the rounds again, embedding itself in Google Play applications that may have affected nearly 12 million users. Professionally developed, HummingWhale is a variant of a researcher documented strain hitting the Google store last July.

Court denies U.S. government appeal in Microsoft case

“Appeals court not reconsidering DOJ request for email handover”

An appeals court has refused the Department of Justice’s request to force Microsoft to release thousands of customer emails held outside of the United States. A 4-4 decision by the Second Circuit court refused to rehear a July decision that denied access to a suspected drug dealers account stored on a server based in Ireland. DOJ requests are not new to Microsoft, having been in consistent battles for email requests since early 2013.

Cisco’s web meeting plugin for Chrome has a whopping flaw

“Extension may need security patch”

Users of the Cisco WebEx extension would be keen on ensuring they have installed the 1.03 patch, as security experts have been claiming earlier versions leave considerable vulnerabilities in a users device. Filippo Valsorda (@FiloSottile) has recently tweeted on the matter “…any website could just install malware on your machine silently.”

Enjoy your read? Check out our other content here.