SecuObs.com

SecuObs.com http://www.secuobs.com L'observatoire de la securite Internet fr webmaster@secuobs.com ESRT @uscert_gov - Google Releases Chrome 140835202: Google has released Chrome 140835202 for Linux, Mac, Windows ... ESRT @uscert_gov - Google Releases Chrome 140835202: Google has released Chrome 140835202 for Linux, Mac, Windows http://www.secuobs.com/twitter/news/254342.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11110 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11110 ESRT @techflavor - Downloading DEFCON19 DVD ... ESRT @techflavor - Downloading DEFCON19 DVD http://www.secuobs.com/twitter/news/252937.shtml http://www.secuobs.com/news/comments26082005-wth05.shtml#11078 http://www.secuobs.com/news/comments26082005-wth05.shtml#11078 Microsoft Security Essentials Mis-identifes Chrome, Fri, Sep 30th ... Microsoft Security Essentials Mis-identifes Chrome, Fri, Sep 30th http://www.secuobs.com/revue/news/332040.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11066 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11066 Mikko's Google Zeitgeist Presentation ... Mikko's Google Zeitgeist Presentation http://www.secuobs.com/revue/news/331759.shtml http://www.secuobs.com/news/comments18022010-cybercriminalite-fic-gendarmerie.shtml#11053 http://www.secuobs.com/news/comments18022010-cybercriminalite-fic-gendarmerie.shtml#11053 Firefox 7 security fixes, http vs https and data collection ... Firefox 7 security fixes, http vs https and data collection http://www.secuobs.com/revue/news/331730.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11052 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11052 25pourcents of tested Google Chrome extensions allow data theft ... 25pourcents of tested Google Chrome extensions allow data theft http://www.secuobs.com/revue/news/331766.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11049 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#11049 ESRT @aszy - Defeating x64: Modern Trends of Kernel-Mode Rootkits ... ESRT @aszy - Defeating x64: Modern Trends of Kernel-Mode Rootkits http://www.secuobs.com/twitter/news/251781.shtml http://www.secuobs.com/news/comments105112008-hack-lu-rustock.shtml#11025 http://www.secuobs.com/news/comments105112008-hack-lu-rustock.shtml#11025 ESRT @EvilFingers - Alureon Rootkit Morphs Again, Adds Steganography ... ESRT @EvilFingers - Alureon Rootkit Morphs Again, Adds Steganography http://www.secuobs.com/twitter/news/251324.shtml http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#11011 http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#11011 ESRT @exploitdb - dos - GMER - MFT overwrite - 0day ... ESRT @exploitdb - dos - GMER - MFT overwrite - 0day http://www.secuobs.com/twitter/news/251396.shtml http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#11009 http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#11009 ESRT @hypatiadotca @csoghoian - Public conversation with Chrome privacy team on the lack of support for Do Not Track ... ESRT @hypatiadotca @csoghoian - Public conversation with Chrome privacy team on the lack of support for Do Not Track http://www.secuobs.com/twitter/news/251102.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10995 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10995 ESRT @thaidn @agl__ - Chrome and the BEAST ... ESRT @thaidn @agl__ - Chrome and the BEAST http://www.secuobs.com/twitter/news/250761.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10973 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10973 ESRT @antic0de @shoebox - I've made my entire 24-part lockpicking course available free via Youtube ... ESRT @antic0de @shoebox - I've made my entire 24-part lockpicking course available free via Youtube http://www.secuobs.com/twitter/news/250279.shtml http://www.secuobs.com/news/comments26082005-wth05.shtml#10964 http://www.secuobs.com/news/comments26082005-wth05.shtml#10964 ESRT @teamcymru - Security bugs in Google Chrome extensions ... ESRT @teamcymru - Security bugs in Google Chrome extensions http://www.secuobs.com/twitter/news/249252.shtml http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10938 http://www.secuobs.com/news/comments3814112008-browser_rootkit.shtml#10938 Google patches 32 Chrome bugs, revs browser to v.14 ... Google patches 32 Chrome bugs, revs browser to v.14 http://www.secuobs.com/revue/news/329493.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10899 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10899 UPDATE FBPwn v1.4 ... UPDATE FBPwn v1.4 http://www.secuobs.com/revue/news/328248.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10827 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10827 Cookie Jacking UI Redressing Attacks ... Cookie Jacking UI Redressing Attacks http://www.secuobs.com/revue/news/328296.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10818 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10818 Mozilla Releases Field Guide to Do Not Track ... Mozilla Releases Field Guide to Do Not Track http://www.secuobs.com/revue/news/328025.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10813 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10813 Researchers Typosquatting Stole 20GB of E-Mail from Fortune 500 ... Researchers Typosquatting Stole 20GB of E-Mail from Fortune 500 http://www.secuobs.com/revue/news/327877.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10807 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10807 ESRT @jduck1337 @agl__ - Why we aren't switching Chrome to Convergence ... ESRT @jduck1337 @agl__ - Why we aren't switching Chrome to Convergence http://www.secuobs.com/twitter/news/246166.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10801 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10801 UPDATE DOM Snitch v0.717 ... UPDATE DOM Snitch v0.717 http://www.secuobs.com/revue/news/326951.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10739 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10739 ESRT @ivanristic @thaidn - @julianor first public fix - even though Opera is not vulnerable to our SSL attack ... ESRT @ivanristic @thaidn - @julianor first public fix - even though Opera is not vulnerable to our SSL attack http://www.secuobs.com/twitter/news/243590.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10710 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10710 ESRT @revskills @roman_soft - Summary of recent Chrome protections RT @stalkr_ HSTS preloading, public key pinning and Chrome ... ESRT @revskills @roman_soft - Summary of recent Chrome protections RT @stalkr_ HSTS preloading, public key pinning and Chrome http://www.secuobs.com/twitter/news/243895.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10706 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10706 ESRT @sambowne @Catelli_NQU @edbott - Lockdown-evading Chrome Frame exits beta ... ESRT @sambowne @Catelli_NQU @edbott - Lockdown-evading Chrome Frame exits beta http://www.secuobs.com/twitter/news/243564.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10699 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10699 New Versions of Chrome and Firefox Disable DigiNotar Root ... New Versions of Chrome and Firefox Disable DigiNotar Root http://www.secuobs.com/revue/news/326306.shtml http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10691 http://www.secuobs.com/news/comments3714112008-browser_rootkit.shtml#10691 ESRT @ioerror @scarybeasts - This is what the MITM'ed Chrome 13 looked like in the Gmail + pwned CA case ... ESRT @ioerror @scarybeasts - This is what the MITM'ed Chrome 13 looked like in the Gmail + pwned CA case http://www.secuobs.com/twitter/news/242703.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10684 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10684 Web Searchable Databases An Increasing Security Risk ... Web Searchable Databases An Increasing Security Risk http://www.secuobs.com/revue/news/325445.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10644 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10644 ESRT @stalkr_ @ethicalhack3r - Use Google+ as a proxy Reported to Google Security but ignored ... ESRT @stalkr_ @ethicalhack3r - Use Google+ as a proxy Reported to Google Security but ignored http://www.secuobs.com/twitter/news/241436.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10638 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10638 ESRT @FSecure - How Secure are Your Saved Chrome Browser Passwords ... ESRT @FSecure - How Secure are Your Saved Chrome Browser Passwords http://www.secuobs.com/twitter/news/241268.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10635 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10635 Ubuntu Fixes WebKit Flaws, Other Issues With Updates ... Ubuntu Fixes WebKit Flaws, Other Issues With Updates http://www.secuobs.com/revue/news/324730.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10611 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10611 Google Fixes 11 Flaws in Chrome 130782215 ... Google Fixes 11 Flaws in Chrome 130782215 http://www.secuobs.com/revue/news/324641.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10604 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10604 ESRT @HaDeSss - Facebook’s official Security Guide — @PenTestIT ... ESRT @HaDeSss - Facebook’s official Security Guide — @PenTestIT http://www.secuobs.com/twitter/news/240443.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10601 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10601 AxMock is released for your review ... AxMock is released for your review http://www.secuobs.com/revue/news/324120.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10584 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10584 Keeping abreast of Web malware delivery techniques ... Keeping abreast of Web malware delivery techniques http://www.secuobs.com/revue/news/323881.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10567 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10567 MHTML security for Internet Explorer Worth disabling MHTML IE ... MHTML security for Internet Explorer Worth disabling MHTML IE http://www.secuobs.com/revue/news/323912.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10562 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10562 IE 9.0 Security and Reputation Blocking ... IE 9.0 Security and Reputation Blocking http://www.secuobs.com/revue/news/323757.shtml http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10551 http://www.secuobs.com/news/comments3614112008-browser_rootkit.shtml#10551 Firefox 3.6.20 Corrects Several Critical Vulnerabilities ... Firefox 3.6.20 Corrects Several Critical Vulnerabilities http://www.secuobs.com/revue/news/323542.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10537 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10537 ESRT @komeilipour - Windows Internet Explorer 9.0.1 Stack Hash Crash POC ... ESRT @komeilipour - Windows Internet Explorer 9.0.1 Stack Hash Crash POC http://www.secuobs.com/twitter/news/238784.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10535 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10535 Firefox 6.0 adds clutch of useful security tweaks ... Firefox 6.0 adds clutch of useful security tweaks http://www.secuobs.com/revue/news/323447.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10520 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10520 ESRT @xanda @kahusecurity - Drive-By Cache: Payload Hunting ... ESRT @xanda @kahusecurity - Drive-By Cache: Payload Hunting http://www.secuobs.com/twitter/news/237885.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10503 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10503 Old hacking tricks work too easily in attacks on HTML5 ... Old hacking tricks work too easily in attacks on HTML5 http://www.secuobs.com/revue/news/322673.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10484 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10484 remote - Mozilla Firefox 3.6.16 mChannel use after free vulnerability - CVE 2011-0065 ... remote - Mozilla Firefox 3.6.16 mChannel use after free vulnerability - CVE 2011-0065 http://www.secuobs.com/revue/news/322208.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10461 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10461 Microsoft expecting exploits for critical IE vulnerabilities ... Microsoft expecting exploits for critical IE vulnerabilities http://www.secuobs.com/revue/news/322054.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10436 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10436 Security in HTML 5 and HTTP ... Security in HTML 5 and HTTP http://www.secuobs.com/revue/news/321607.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10412 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10412 How to find 0-day in browsers ... How to find 0-day in browsers http://www.secuobs.com/revue/news/321623.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10410 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10410 BinDiff and BinNavi on sale again -- 200 USD and 400 USD respectively ... BinDiff and BinNavi on sale again -- 200 USD and 400 USD respectively http://www.secuobs.com/revue/news/320776.shtml http://www.secuobs.com/news/comments117112008-vxclass_isomorphisme_graphique.shtml#10358 http://www.secuobs.com/news/comments117112008-vxclass_isomorphisme_graphique.shtml#10358 Google Chrome 13.0.782.107 Released ... Google Chrome 13.0.782.107 Released http://www.secuobs.com/revue/news/320615.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10355 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10355 ESRT @dragosr - 61 page PDF report from ENISA about HTML5 security issues ... ESRT @dragosr - 61 page PDF report from ENISA about HTML5 security issues http://www.secuobs.com/twitter/news/233839.shtml http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10343 http://www.secuobs.com/news/comments3514112008-browser_rootkit.shtml#10343 ESRT @rtls - Reduction of Manipulation Counterfeiting by using TAMPER PROOF RFID Labels ... ESRT @rtls - Reduction of Manipulation Counterfeiting by using TAMPER PROOF RFID Labels http://www.secuobs.com/twitter/news/232330.shtml http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10300 http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10300 ESRT @ChristiaanBeek @nigroeneveld - Rootkit Detection Via Kernel Code Tunneling ... ESRT @ChristiaanBeek @nigroeneveld - Rootkit Detection Via Kernel Code Tunneling http://www.secuobs.com/twitter/news/230895.shtml http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#10256 http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#10256 Apple Safari 5.1 increases security ... Apple Safari 5.1 increases security http://www.secuobs.com/revue/news/318469.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10233 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10233 Mozilla Releases BrowserID Web Authentication System ... Mozilla Releases BrowserID Web Authentication System http://www.secuobs.com/revue/news/317203.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10168 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10168 ESRT @backtracklinux - RFID Cooking with Mifare Classic on BackTrack 5 - Thanks to MI1 for the contribution ... ESRT @backtracklinux - RFID Cooking with Mifare Classic on BackTrack 5 - Thanks to MI1 for the contribution http://www.secuobs.com/twitter/news/227727.shtml http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10159 http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10159 ESRT @rtls - Live CD for RFID hacking on the go ... ESRT @rtls - Live CD for RFID hacking on the go http://www.secuobs.com/twitter/news/226068.shtml http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10109 http://www.secuobs.com/news/comments303112008-hack-lu-rfidiot.shtml#10109 remote - Mozilla Firefox nsTreeRange Dangling Pointer Vulnerability - CVE 2011-0073 ... remote - Mozilla Firefox nsTreeRange Dangling Pointer Vulnerability - CVE 2011-0073 http://www.secuobs.com/revue/news/316238.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10101 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10101 ESRT @dotrandomcode @exploitdb - papers - Become fully aware of the potential dangers of ActiveX attacks ... ESRT @dotrandomcode @exploitdb - papers - Become fully aware of the potential dangers of ActiveX attacks http://www.secuobs.com/twitter/news/225490.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10078 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10078 ESRT @jeremiahg @superevr @kkotowicz - Imgur.com session hijacking - UI-redressing 0-day clickjacking ... ESRT @jeremiahg @superevr @kkotowicz - Imgur.com session hijacking - UI-redressing 0-day clickjacking http://www.secuobs.com/twitter/news/225000.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10060 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10060 ESRT @teamcymru - IE8 malware exploit on a honeypot under the forensic microscope, reminder to patch patch patch ... ESRT @teamcymru - IE8 malware exploit on a honeypot under the forensic microscope, reminder to patch patch patch http://www.secuobs.com/twitter/news/223379.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10033 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10033 ESRT @y0ug - CookieMonster v0.0.2 is out ... ESRT @y0ug - CookieMonster v0.0.2 is out http://www.secuobs.com/twitter/news/223848.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10020 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10020 ESRT @hackinthebox - Chrome exploit a hole new attack vector ... ESRT @hackinthebox - Chrome exploit a hole new attack vector http://www.secuobs.com/twitter/news/223253.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10010 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#10010 ESRT @Hfuhs - Advanced Rootkit Exploit – Demonstrated VIDEO ... ESRT @Hfuhs - Advanced Rootkit Exploit – Demonstrated VIDEO http://www.secuobs.com/twitter/news/222269.shtml http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#9991 http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#9991 ESRT @darkoperator - Google Fixes Six High-Risk Bugs in Chrome, Pays Out $6k in Bounties ... ESRT @darkoperator - Google Fixes Six High-Risk Bugs in Chrome, Pays Out $6k in Bounties http://www.secuobs.com/twitter/news/222284.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9985 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9985 Update Opera 11.50 is now available http www.opera.com , Tue, Jun 28th ... Update Opera 11.50 is now available http www.opera.com , Tue, Jun 28th http://www.secuobs.com/revue/news/314042.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9982 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9982 ESRT @y0ug - CookieMonster a firesheep like is out - download and demo ... ESRT @y0ug - CookieMonster a firesheep like is out - download and demo http://www.secuobs.com/twitter/news/221363.shtml http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9974 http://www.secuobs.com/news/comments3414112008-browser_rootkit.shtml#9974 ESRT @dragosr @ChromeBrowser - Google Chrome Now Blocks Insecure Scripts on HTTPS ... ESRT @dragosr @ChromeBrowser - Google Chrome Now Blocks Insecure Scripts on HTTPS http://www.secuobs.com/twitter/news/221561.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9969 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9969 UPDATE DOM Snitch v0.707 ... UPDATE DOM Snitch v0.707 http://www.secuobs.com/revue/news/313377.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9955 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9955 UPDATE DOM Snitch v0.707 ... UPDATE DOM Snitch v0.707 http://www.secuobs.com/revue/news/313377.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9953 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9953 ESRT @johullrich @jasonlam_sec - Google Chrome to implement Content Security Policy in version 13 Nice ... ESRT @johullrich @jasonlam_sec - Google Chrome to implement Content Security Policy in version 13 Nice http://www.secuobs.com/twitter/news/218698.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9945 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9945 XHR, CSRF and bypassing the browser same origin policy ... XHR, CSRF and bypassing the browser same origin policy http://www.secuobs.com/revue/news/311962.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9941 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9941 ESRT @ioerror @agl__ - New Chrome security features: Javascript PRNG, HSTS + cert pinning, CSP and more ... ESRT @ioerror @agl__ - New Chrome security features: Javascript PRNG, HSTS + cert pinning, CSP and more http://www.secuobs.com/twitter/news/217605.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9921 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9921 ESRT @rcecoder @dm557 - Yuange point out an GC algorithm flaw in IE 9, disclosure memory information, defeat ASLR ... ESRT @rcecoder @dm557 - Yuange point out an GC algorithm flaw in IE 9, disclosure memory information, defeat ASLR http://www.secuobs.com/twitter/news/216693.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9907 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9907 Google Fixes 15 Bugs in Chrome, Gives Users Ability to Delete Flash Cookies ... Google Fixes 15 Bugs in Chrome, Gives Users Ability to Delete Flash Cookies http://www.secuobs.com/revue/news/309764.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9860 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9860 ESRT @devilok - Chrome Form Grabber - No One is Secure ... ESRT @devilok - Chrome Form Grabber - No One is Secure http://www.secuobs.com/twitter/news/214280.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9831 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9831 ESRT @sambowne @teksquisite @ESET - FB and Microsoft Defeat Chrome's Incognito Mode --wrong, should not be possible ... ESRT @sambowne @teksquisite @ESET - FB and Microsoft Defeat Chrome's Incognito Mode --wrong, should not be possible http://www.secuobs.com/twitter/news/213644.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9830 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9830 ESRT @ioerror @andrewbecherer - FYI making the Chrome browser use Google Secure Search by default is really easy ... ESRT @ioerror @andrewbecherer - FYI making the Chrome browser use Google Secure Search by default is really easy http://www.secuobs.com/twitter/news/213293.shtml http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9809 http://www.secuobs.com/news/comments3314112008-browser_rootkit.shtml#9809 ESRT @klightowler @elcomsoft - ElcomSoft Releases a Free Facebook Password Recovery Tool ... ESRT @klightowler @elcomsoft - ElcomSoft Releases a Free Facebook Password Recovery Tool http://www.secuobs.com/twitter/news/213158.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9796 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9796 ESRT @espreto @usscastro - Pin-cookies: using browser DNS pinning cache as Third-Party Cookies ... ESRT @espreto @usscastro - Pin-cookies: using browser DNS pinning cache as Third-Party Cookies http://www.secuobs.com/twitter/news/211842.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9755 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9755 JSON Hijacking ... JSON Hijacking http://www.secuobs.com/revue/news/307940.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9749 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9749 ESRT @securityshell - Chrome 11 Anti-XSS ByPass ... ESRT @securityshell - Chrome 11 Anti-XSS ByPass http://www.secuobs.com/twitter/news/210915.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9732 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9732 Another use of Clickjacking, Cookiejacking ... Another use of Clickjacking, Cookiejacking http://www.secuobs.com/revue/news/307248.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9729 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9729 ESRT @revskills @heisesec - Chrome 11 update patches critical holes ... ESRT @revskills @heisesec - Chrome 11 update patches critical holes http://www.secuobs.com/twitter/news/210257.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9723 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9723 ESRT @rnarang @EvilFingers - LinkedIn SSL Cookie Vulnerability ... ESRT @rnarang @EvilFingers - LinkedIn SSL Cookie Vulnerability http://www.secuobs.com/twitter/news/209104.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9692 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9692 ESRT @y0ug @d0znpp - Chrome 11 and Reader X and Flash 10 local file stealing video ... ESRT @y0ug @d0znpp - Chrome 11 and Reader X and Flash 10 local file stealing video http://www.secuobs.com/twitter/news/209271.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9691 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9691 ESRT @fmavituna @csima - Exploit all browsers with a simple .net exploit using silverlight Does not use heapspraying ... ESRT @fmavituna @csima - Exploit all browsers with a simple .net exploit using silverlight Does not use heapspraying http://www.secuobs.com/twitter/news/209233.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9689 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9689 ESRT @daveaitel @legerov - quick demo of Opera 11.11 0day ... ESRT @daveaitel @legerov - quick demo of Opera 11.11 0day http://www.secuobs.com/twitter/news/208760.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9671 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9671 ESRT @jeremiahg - HTML5 haxoring, Invisible arbitrary CSRF file upload in Flick ... ESRT @jeremiahg - HTML5 haxoring, Invisible arbitrary CSRF file upload in Flick http://www.secuobs.com/twitter/news/208085.shtml http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9661 http://www.secuobs.com/news/comments3214112008-browser_rootkit.shtml#9661 Opera 11.11 closes a critical hole ... Opera 11.11 closes a critical hole http://www.secuobs.com/revue/news/305639.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9652 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9652 The DOMinator Project - a Firefox based software for analysis and identification of DOM Based Cross Site Scripting issues ... The DOMinator Project - a Firefox based software for analysis and identification of DOM Based Cross Site Scripting issues http://www.secuobs.com/revue/news/305649.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9651 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9651 ESRT @dakami - Fabrice Bellard is from the future, and sent back a PC emulator in JS running Linux in your browser ... ESRT @dakami - Fabrice Bellard is from the future, and sent back a PC emulator in JS running Linux in your browser http://www.secuobs.com/twitter/news/207331.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9640 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9640 ESRT @maltainfosec @VUPEN - Chrome v11069668 NO effect on our exploit All version can still be pwned despite the sandbox ... ESRT @maltainfosec @VUPEN - Chrome v11069668 NO effect on our exploit All version can still be pwned despite the sandbox http://www.secuobs.com/twitter/news/206737.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9632 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9632 Google Chrome 11.0.696.68 Released ... Google Chrome 11.0.696.68 Released http://www.secuobs.com/revue/news/304394.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9610 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9610 ESRT @kakroo - New graphics engines imperil users of Firefox and Chrome - Disable WebGL now ... ESRT @kakroo - New graphics engines imperil users of Firefox and Chrome - Disable WebGL now http://www.secuobs.com/twitter/news/204853.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9608 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9608 UPDATE Skipfish-1.87b ... UPDATE Skipfish-1.87b http://www.secuobs.com/revue/news/303786.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9600 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9600 ESRT @BorjaMerino - Using browser DNS pinning cache as third-party cookies ... ESRT @BorjaMerino - Using browser DNS pinning cache as third-party cookies http://www.secuobs.com/twitter/news/204276.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9593 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9593 Researchers Say New Bugs Can Bypass Google Chrome Sandbox ... Researchers Say New Bugs Can Bypass Google Chrome Sandbox http://www.secuobs.com/revue/news/303616.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9590 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9590 ESRT @schneierblog - Forged Memory: A scary dev in rootkits: typically modify certain areas in the memory of the run ... ESRT @schneierblog - Forged Memory: A scary dev in rootkits: typically modify certain areas in the memory of the run http://www.secuobs.com/twitter/news/203107.shtml http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#9575 http://www.secuobs.com/news/comments05112008-hack-lu-rustock.shtml#9575 Firefox, Thunderbird and SeaMonkey Security Updates, Fri, Apr 29th ... Firefox, Thunderbird and SeaMonkey Security Updates, Fri, Apr 29th http://www.secuobs.com/revue/news/301598.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9493 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9493 ESRT @darkoperator - Deleting Flash Cookies Now Possible from Chrome User Interface ... ESRT @darkoperator - Deleting Flash Cookies Now Possible from Chrome User Interface http://www.secuobs.com/twitter/news/199905.shtml http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9486 http://www.secuobs.com/news/comments3114112008-browser_rootkit.shtml#9486 Google Fixes More Than 25 Bugs in Chrome, Pays 16,500 in Bounties ... Google Fixes More Than 25 Bugs in Chrome, Pays 16,500 in Bounties http://www.secuobs.com/revue/news/301191.shtml http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9481 http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9481 ESRT @komeilipour @dinosn - Google Chrome 0day BOF DOS Exploit ... ESRT @komeilipour @dinosn - Google Chrome 0day BOF DOS Exploit http://www.secuobs.com/twitter/news/199791.shtml http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9479 http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9479 ESRT @xanda @aramosf - Turn Your Firefox Into A Keylogger Without Any Software ... ESRT @xanda @aramosf - Turn Your Firefox Into A Keylogger Without Any Software http://www.secuobs.com/twitter/news/199085.shtml http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9465 http://www.secuobs.com/news/comments3014112008-browser_rootkit.shtml#9465