In a coordinated announcement, Microsoft, Google, Apple and Mozilla have declared that they will remove the TLS 1.0 and TLS 1.1 protocols in 2020 According to experts in digital forensics, Transport Layer Security (TLS) is a protocol that can be used to encrypt communication between a web browser and the visited site. This protocol provides an encrypted […]
Google Chrome dominates the browser market worldwide with a massive 60% share, leaving the rest to other web browsers. To be honest, Chrome provides a really good web browsing experience with a seamless functioning across multiple devices. However, we all know that such a smooth experience comes at a cost — our personal data. We […]
A previously discovered browser hijacker malware dubbed as CeidPageLock has resurfaced again, in a bigger and better avatar, reveal researchers at Check Point security firm. This time around it is loaded with new features and is being distributed through the RIG Exploit kit. Trend Micro states that among all the exploit kits, the RIG is […]
Newly discovered Loki Bot Malware spreading as a .iso extension that targets Corporate network and applications to steal passwords from Browsers, Messaging Applications, Mail & FTP Clients. Recently it was observed by Kaspersky researchers that the malware mainly targeting corporate networks around the world and gain a large amount of sensitive information. Loki Bot Malware […]
The Long Term Evolution (LTE) standard for mobile communication, also known as 4G was designed to overcome security flaws of its predecessor standards and is used by millions of people across the globe. However, researchers have now uncovered weaknesses in LTE that allows attackers to hijack browsing session which redirects users to malicious websites and spy on their online […]
With the staggering amount of features that were introduced through HTML5 and CSS3 the attack surface of browsers grew accordingly. Consequently, it is no surprise that interactions between such features can cause unexpected behavior impacting the security of their users. In this article, we describe such a practical attack and the research behind it. tl;dr: We […]
Newly discovered banking Trojan named MnuBot malware spreading to steal the sensitive bank related information such as login credentials through taking the screenshot of the browser window and set the keylogger in victims machine. MnuBot malware using Microsoft SQL Server as a communication medium and take the commands from C&C server and execute it into the […]
A team of security experts explained; that this application, Dumpzilla, is developed in Python 3.x and is used with the aim of extracting all forensic information from the Firefox, Iceweasel and Seamonkey browsers. An information security professional also commented that because it is developed in Python 3.x, it may not work correctly in older versions of Python, […]
What you don’t see won’t hurt you, must have been the reasoning of the threat actors who created the latest batch of extensions that make these browser hijackers even more difficult to remove. The extensions redirect users away from pages where they can disable or delete them in order to drive clicks up on YouTube videos or hijack […]
Web Browsers are one of the most significant pieces of software on your device that serves as a window to access the World Wide Web. Mostly, a browser app is always pre-installed on every Android device. However, not all the browsers can provide you with a smooth and reliable browsing experience. There are a lot of […]
A Famous VPN (Virtual Private Network)service provider Hotspot Shield Accused of violating the user’s Privacy policy and performing Malicious Activities such as injecting the Malicious Ads and JavaScript into users Browsers. VPN (Virtual Private Network)Services Provides a privacy, security to Access the Blocked Content and maintain the user’s Privacy on the Internet and ensure the […]
Cerber ransomware which gained popularity and evolved one of the fast growing ransomware families that infiltrate the system and encrypts various file types including .jpg, .doc, .raw, .avi, etc. It adds a .cerber extension to each encrypted file. Following successful infiltration, Cerber demands a ransom payment to decrypt these files. Also Read A complete Lookback […]
Another major exploit kit (EK) looks like it’s heading for the EK graveyard as activity from the RIG EK has fallen to less than 25% of what the exploit kit used to handle three months ago, in March 2017. RIG EK’s decline in activity fits a pattern observed on the entire EK market in the […]
How to Hack Web Browsers Using BeEF (The Browser Exploitation Framework) What is BeEF? BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual […]
Short Bytes: A Chinese security researcher has demonstrated a scary phishing attack that’s virtually impossible to detect in web browsers like Chrome, Firefox, and Opera. The attack uses such unicode characters in domains that look just like the common ASCII characters. For example, “xn--pple-43d.com” is equivalent to “аpple.com”. Chrome 58 has fixed the issue and the update […]
The Chinese security Xudong Zheng is warning of Homograph Phishing Attacks are “almost impossible to detect” also to experts. The Chinese security researcher Xudong Zheng has devised a phishing technique that is “almost impossible to detect.” Hackers can exploit a known vulnerability in the popular web browsers Chrome, Firefox and Opera to display to the […]
You might be privy to websites, banks, shops, and advertisers tracking your on-line sports using one-of-a-kind net “fingerprinting” strategies even in incognito/private mode, but now sites can music you everywhere on line — even though you switch browsers it track user activity. A group of researchers has lately advanced a move-browser fingerprinting technique — the […]
Short Bytes: A new research conducted at the Lehigh University has taken the browser fingerprinting to a whole new level. They have devised a method to create a digital fingerprint and identify 99.24% users, regardless of the web browser they are using. For this, they take various hardware and software features of the users’ device […]
Short Bytes: The “helpful” autofill feature of your web browser also poses a big risk to your online security. A security researcher has uncovered a simple exploit that uses form fields hidden from the user to steal the personal information. While Chrome, Opera, and Safari are affected by this issue, Firefox remains immune. The users are advised […]
Chromebackdoor is a pentest tool, this tool use a MITB technique for generate a windows executable “.exe” after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control. System Requirements pip install crxmake wine32 ChromeBackdoor : Install Text (V 3.0) ChromeBackdoor :1 Install Video […]
Chromebackdoor is a pentest tool, this tool uses a MITB technique to generate a windows executable “.exe”, after launch, it runs a malicious extension or script on most popular browsers, and send all DOM datas on command and control. VIDEO Install Text (V 3.0) Install Video (OLD) Binder guide Module guide Form grabber plugins Facebook […]