Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for built-in “about: pages” that have been the gateway to sensitive preferences, settings, and statics of the browser. This is all driven to mitigate a large class of potential cross-site scripting issues in Firefox browser has 45 such internal locally-hosted about …
The cybercrime attacks of large enterprises has grown in recent months driven by the new work conditions imposed by the COVID-19 pandemic. The threat has increased in many areas including servers that are directly accessible from the internet, domain names, websites, web forms, certificates, third-party applications and components or mobile apps. While some of those …
Tala Security, the provider of security solutions protecting enterprise websites and web applications against advanced client-side attacks like Magecart, today announced the Tala 2019 State of the Web Report. The report, which tested U.S. websites within the Alexa 1000 ranking, educates enterprises about the critical and under-recognized security threats related to their web assets and …
Cybercrime throughout Uganda is resulting in a loss of up to 122 billion Ugandan shillings for the nation according to a new Africa cybersecurity report for 2016, as compiled by Kenyan cybercrime organization, Serianu Cyber Threat Intelligence. Internet usage is growing rapidly in Uganda. Data from the United Nations Department of Economic and Social Affairs shows …
A security researcher, Marcus Hutchins, 22, a British national who in May stopped an outbreak of the WannaCry ransomware has been arrested and detained after attending the Def Con conference in Las Vegas. A Justice Department spokesperson has confirmed on the phone that his arrest is in relation to his alleged role “in creating and distributing …
Security researchers have recently discovered a new fileless ransomware, dubbed “Sorebrect,” which injects malicious code into a legitimate system process (svchost.exe) on a targeted system and then self-destruct itself in order to evade detection. Unlike traditional ransomware, Sorebrect has been designed to target enterprise’s servers and endpoint. The injected code then initiates the file encryption …
For Infosecurity Europe 2016, High-Tech Bridge has released a comprehensive overview of trends across all major fields of web security. The trends include all types of security and privacy issues, from web application vulnerabilities to HTTPS traffic encryption and PCI DSS compliance. Over 1,000 people per day use High-Tech Bridge’s free web security services: SSL/TLS …
[Editors note: Please welcome Farzaneh Badii, from Hamburg University’s Graduate School in Law and Economics, who joins Syracuse University’s iSchool and the IGP as a Visiting Doctoral Student for the next six months.] “Lord, deliver us from all evil and from French state justice.”[1] This was the French farmers’ prayer once their parliament and state got …