Both Mozilla and the Google are raising their rewards for submitted critical vulnerabilities in respective browsers. Mozilla is now paying $3,000 for Firefox bugs and the Google Chromium team is paying $3133.70 (“elite” in hacker leet-speak) for bugs in Chrome, compared to the initial $1,337 reward from six months ago.
For the second time in two months, Mozilla has rushed out a fix for Firefox to patch a problem with a browser update issued just days before.
Mozilla shipped Firefox 3.6.8 on Friday to patch a single security problem and deal with what Mike Beltzner, director of Firefox, called “a stability problem that affected some pages with embedded plug-ins.”
Ask the average techie which browser has the most vulnerabilities, and odds are their answer will be “Internet Explorer, of course.” Indeed, Microsoft’s browser has endured plenty of slings and arrows — and not entirely without justification — but some of those projectiles should deservedly be aimed at Apple, Mozilla, and Google.
Dell, through its Kace unit, is making available free Web browser security software that works by creating a protective “sandbox” on the desktop to isolate the user’s desktop from malware or other harmful actions that might be encountered browsing the Web.
A well-known cryptographic attack could be used by hackers to log into Web applications used by millions of users, according to two security experts who plan to discuss the issue at an upcoming security conference.
Speaking at the Microsoft Worldwide Partner Conference (WPC), COO Kevin Turner told attendees that Microsoft’s archrival Apple is now No. 1 in software vulnerabilities, with database rival Oracle in the No. 2 spot.
As Google and its carriers begin to make the Android 2.2 OS (aka Froyo) available to the slew of devices from Motorola, HTC, LG, and so on, one repeatedly trumpeted claim is that it has better Microsoft Exchange support, making it usable in many businesses that heretofore would have blocked it.
This support, Android fan boys say, mean that Google’s mobile OS is finally ready to take on the iPhone and even BlackBerry in the corporate world.
No such luck.
Oracle will release on Tuesday 59 patches to fix security weaknesses affecting hundreds of products, according to a notice on its website.
Twenty-one of the vulnerabilities affect products related to Solaris, the Unix operating system Oracle acquired through its purchase of Sun Microsystems. Seven of them can be exploited remotely over a network without requiring a password or username, Oracle said.
Apple has responded to press inquiries about the hacking of iTunes user accounts and fraudulent purchases made through its App Store, but the company has yet to come clean about the extent of the incident or the pressing questions it raises about the securi
The security of Apple’s iTunes App Store is in question this week, as reports surfaced over the weekend about large-scale compromises of customer accounts and efforts to game the company’s Application ecosystem for illicit profit.
Despite Google Chrome‘s strong security track record and increasing popularity, financial institution Chase has announced that it will drop support for the
Microsoft’s cavalier attitude toward privacy in the Windows Live Essentials applications has drawn the ire of many.
Mozilla on Tuesday patched nine vulnerabilities, six of them critical, in Firefox 3.6 and Firefox 3.5.
But rather than highlighting the security fixes in Firefox 3.6.4, the company instead emphasized the addition of crash protection, a move meant to keep the browser alive when popular plug-ins drop dead.
For all its promise of revolution, the computing industry often lags behind expectations. After all, your netbook is really just a laptop, only smaller and cheaper. The chip that powers your PC today has a direct lineage back to the Pentiums of yesterday. Your latest hard drive might hold 2TB, but it’s still just a hard drive. Where’s the real innovation?
In the labs, of course.
As soon as a new technology gets traction, smart criminals figure out a way to misapply it. And one of the hottest features in the mobile world, location awareness, is next in line for exploitation.
Enterprise 2.0 strategies are becoming more popular among companies today, but there are serious logistical and legal challenges along with the expected benefits of using social collaboration tools.
This is especially true for companies like Vanguard, a mutual fund with roughly 12,500 employees and $1.3 trillion in assets under management, said Abha Kumar, principal in the information technology division, during a presentation at the Enterprise 2.0 conference in Boston this week.
A step behind IBM, HP this week unveiled a service aimed at helping reduce application vulnerabilities during the development cycle, ideally saving companies the costs and headaches associated with fixing holes once apps have gone live.
Apple on Monday shipped the latest version of its Safari browser, patching a record 48 vulnerabilities, including one that a pair of hackers exploited in March to win a $15,000 prize.
The new browser debuted the same day as Apple unveiled the iPhone 4 at its annual Worldwide Developers Conference.
As businesses increasingly try to figure out how to use social networking tools in the enterprise, an IT governance group has released a ranking of the top five risks social media poses to companies.
It’s easy to take shots at Microsoft’s Internet Explorer and make snarky references to “Grandma’s browser.” But despite a shift from IE in the consumer market, when it comes to business, Microsoft’s browser is still the choice of three out of four users. And when businesses do drop nine-year-old IE6, they are deploying IE8 instead of glitzier competitors like Mozilla’s Firefox and Google’s Chrome.
