#browsersecurity
LightNews LightNews
security.land
Security researchers from Koi have uncovered 17 malicious Firefox extensions hiding multi-stage malware inside PNG logo files, affecting 50,000+ users.

#SecurityLand #ThreatHorizon #Steganography #Malware #PNG #BrowserSecurity #Cybersecurity

Read More: www.security.land/firefox-exte...
Firefox Extensions Hide Malware in PNG Files: 50K Users Hit
Security researchers discover 17 Firefox extensions using PNG steganography to hide multi-stage malware affecting 50,000+ users.
www.security.land
December 18, 2025 at 12:03 AM
thestartupmac.com
Google details layered security for Chrome’s agentic AI, featuring a Gemini-powered "Critic."
#chromeai #agenticai #gemini #browsersecurity #promptinjection
December 9, 2025 at 8:15 AM
cyberhub.blog
📌 New attack technique allows malicious browser extensions to mimic any installed extension. Microsoft reveals global malvertising campaign. #CyberSecurity #BrowserSecurity https://tinyurl.com/26o2oxv5
Research Team Uncovers Complex Attack Technique by Malicious Browser Extensions
A research team has recently discovered a complex attack technique that allows malicious extensions to impersonate any installed extension in a victim's browser. This new form of polymorphic attack can mimic any extension, thereby increasing the risks for users. Additionally, Microsoft has revealed a global campaign of malicious advertising attacks. These attacks exploit browser vulnerabilities to distribute malware and compromise user security.
tinyurl.com
March 11, 2025 at 6:00 PM
renzume.com
Mozilla's policy update raises questions about browser privacy and organizational transparency
https://www.waterfox.net/blog/a-comment-on-mozilla-changes/
#privacypolicy #mozilla #browsersecurity #governance #usertrust
February 28, 2025 at 4:14 PM
mds52.bsky.social
🚨 #Ciberseguridad | #BrowserSecurity | #AmenazasDigitales 🚨
Nuevo ataque Fullscreen BitM: el navegador como vector de robo de credenciales
Investigadores de SquareX Labs han revelado una técnica de ataque emergente conocida como Fullscreen BitM (Browser-in-the-Middle).
June 9, 2025 at 8:01 PM
acium.bsky.social
DNS filtering creates headaches: all-or-nothing blocking, blank pages, endless whitelisting.
One customer described DNS filtering as "causing more problems than solutions." Sound familiar?
Read our latest blog: acium.io/blog/browser...
#CyberSecurity #BrowserSecurity
March 26, 2025 at 12:49 PM
marketingnews.bsky.social
ICYMI: DuckDuckGo expands browser scam protection against fake sites #DuckDuckGo #BrowserSecurity #ScamProtection #Cybersecurity #PhishingDefense
DuckDuckGo expands browser scam protection against fake sites
DuckDuckGo's browser now guards against investment scams and fake tech support alongside existing phishing defenses.
ppc.land
June 22, 2025 at 7:54 PM
cybermaterial.bsky.social
LangChain Core Flaw Enables Prompt Injection '
Read More: buff.ly/Q0o5P2M

#ChromeExtensions #BrowserMalware #PhantomShuttle #SessionHijacking #CredentialTheft #WebStoreSecurity #BrowserSecurity #ThreatIntel
December 30, 2025 at 6:00 PM
ralf-ladner.bsky.social
Workspace-Protection für sicheres Arbeiten im Hybrid- und Remote-Modus

#BrowserSecurity #Cybersecurity #Cybersicherheit island @Sophos #WorkspaceProtection #ZTNA @Sophos_Info

netzpalaver.de/2026/...
January 20, 2026 at 2:03 PM
startupswire.bsky.social
As browsers become the backbone of SaaS & remote work, they’ve also become prime targets for cyber threats. Seraphic’s patented tech secures any browser—no special setup required.

#Cybersecurity #BrowserSecurity #Funding
shorter.me/TK4ei
Seraphic Security Secures $29M To Transform Enterprise Browser Security
Seraphic Security, a leader in enterprise browser security, has announced a $29 million Series A funding round led by GreatPoint Ventures
shorter.me
January 31, 2025 at 7:53 AM
pcdoctorsnet.bsky.social
🔐 𝐏𝐫𝐢𝐯𝐚𝐭𝐞 𝐁𝐫𝐨𝐰𝐬𝐢𝐧𝐠 𝐯𝐬 𝐑𝐞𝐠𝐮𝐥𝐚𝐫 𝐁𝐫𝐨𝐰𝐬𝐢𝐧𝐠 — 𝐖𝐡𝐚𝐭 𝐘𝐨𝐮𝐫 𝐁𝐫𝐨𝐰𝐬𝐞𝐫 𝐃𝐨𝐞𝐬𝐧’𝐭 𝐖𝐚𝐧𝐭 𝐘𝐨𝐮 𝐭𝐨 𝐊𝐧𝐨𝐰
Incognito mode feels safer—but is it really private?
Most users assume switching tabs means switching identities. In truth, private browsing only hides traces from your device—not the internet.
#BrowserSecurity #USA
July 30, 2025 at 12:32 PM
journosnews.com
Google’s New AI Feature Makes Browsing Safer From Scams
#Google, #Chrome #AI #ArtificialIntelligence #OnlineSafety #ScamAlert #TechSupportScams #GeminiAI #ScamPrevention #FakeWebsites #OnlineScams #BrowserSecurity #RealTimeProtection #Phishing #AIinTech #GoogleChrome #TechNews #DigitalSecurity
Google Uses AI to Spot Scam Websites Instantly on Chrome
Google Deploys AI to Catch Scammy Websites in Real Time on Chrome If you've ever clicked a link and suddenly
journosnews.com
May 10, 2025 at 3:06 AM
hncompanion.com
Countermeasures include privacy-focused browsers like Tor, Mullvad, or Firefox with Arkenfox user.js, disabling JavaScript, and extensions. Yet, some argue these unique configurations can inadvertently make users *more* identifiable. A true cat-and-mouse game. #BrowserSecurity 3/6
November 23, 2025 at 5:00 AM
mbissey.bsky.social
🚨 Google patches Chrome zero-day CVE-2025-6554 exploited in the wild 🛠️. A type confusion flaw in V8 could allow remote code execution via crafted HTML. Update now!
#BrowserSecurity #ZeroDayAlert 🌐🔧

buff.ly/p6Nj5pN
Chrome Zero-Day CVE-2025-6554 Under Active Attack — Google Issues Security Update
Google releases an update for Chrome’s CVE-2025-6554, a critical zero-day flaw, to prevent exploitation
buff.ly
July 2, 2025 at 3:05 PM
techlife-blog.bsky.social
VVS Stealer: How This Python-Based Malware Targets Discord Users Through Advanced Obfuscation

techlife.blog/posts/vvs-st...

#VVSStealer #DiscordMalware #Pyarmor #Infostealer #PythonMalware #Cybersecurity #BrowserSecurity #CredentialTheft #MalwareAnalysis
VVS Stealer: How This Python-Based Malware Targets Discord Users Through Advanced Obfuscation
A deep dive into VVS Stealer, a sophisticated Python malware that uses Pyarmor obfuscation to steal Discord credentials, browser data, and hijack user sessions while evading detection
techlife.blog
January 6, 2026 at 1:08 PM
ppc.land
ICYMI: DuckDuckGo expands browser scam protection against fake sites #DuckDuckGo #BrowserSecurity #ScamProtection #Cybersecurity #PhishingDefense
DuckDuckGo expands browser scam protection against fake sites
DuckDuckGo's browser now guards against investment scams and fake tech support alongside existing phishing defenses.
ppc.land
June 22, 2025 at 7:54 PM
hncompanion.com
Overview: Browser extensions, incl. VPNs & ad blockers, caught harvesting & selling users' AI conversations. This sparks serious concerns about extension review processes, free VPN privacy, & the need for better permission models. #BrowserSecurity 1/5
December 17, 2025 at 2:00 AM
calipia.bsky.social
Le navigateur n’est plus un simple outil : c’est devenu le cœur du SI moderne, et la nouvelle cible des cyberattaques les plus sophistiquées. Microsoft tire la sonnette d’alarme.
#Cybersécurité #BrowserSecurity #Microsoft #IA #SaaS #Cloud #RSSI #Innovation
Le navigateur, nouveau champ de bataille de la cybersécurité : l’avertissement de Microsoft
Il fut un temps où le navigateur web n’était qu’une simple porte d’entrée vers Internet. Aujourd’hui, c’est devenu le bureau universel de l’entreprise moderne. Avec la généralisation du SaaS, du cloud et désormais de l’intelligence artificielle intégrée directement dans les interfaces (ce qui sera au passage un des sujet du prochain Briefing Calipia) Microsoft rappelle qu’il est urgent de repenser la sécurité d’un outil devenu omniprésent dans la vie numérique des organisations.
blog.calipia.com
October 21, 2025 at 8:41 AM
alexandreborges.bsky.social
V8 Sandbox + Leaptiering:

docs.google.com/document/d/1...

#chrome #v8 #sandbox #protection #google #browser #browsersecurity #jit
V8 Sandbox + Leaptiering
V8 Sandbox + Leaptiering Author: olivf@, saelo@ Last Updated: July 2024 Status: in development Visibility: public Relevant bugs: 40931165, 42204201 A new design for JavaScript function invocation and...
docs.google.com
July 19, 2024 at 3:46 PM
insightsintothings.com
Google Chrome will distrust certificates from Chunghwa Telecom and Netlock starting August 1, 2025, due to compliance failures and security concerns. #TLS #Chrome #CertificateAuthority #Netlock #Cybersecurity #BrowserSecurity www.securityweek.com/chrome-to-di...
Chrome to Distrust Chunghwa Telecom and Netlock Certificates
Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome.
www.securityweek.com
June 5, 2025 at 7:55 PM
thedailytechfeed.com
Strengthen your enterprise security by addressing browser vulnerabilities. Explore our comprehensive framework to mitigate risks in the final frontier of enterprise risk. #CyberSecurity #BrowserSecurity #EnterpriseRisk Link: thedailytechfeed.com/a-comprehens...
July 1, 2025 at 3:21 PM
mrtechking.bsky.social
70% of malware hits via the browser, yet it's largely unmonitored. Phishing, AI leaks, risky extensions & Shadow IT are rampant. Old security tools can't keep up. Time to secure the browser itself.

#BrowserSecurity #CyberThreats #InfoSec
brief alt text description of the first image
April 30, 2025 at 6:34 PM
thedailytechfeed.com
Beware of CrashFix: Malicious Chrome extensions are crashing browsers to deploy malware. Stay vigilant and only install trusted extensions. #CyberSecurity #BrowserSecurity #MalwareAlert Link: thedailytechfeed.com/malicious-cr...
January 20, 2026 at 3:45 PM
potato.software
Beware of the BO Sidebar Spoofing Attack! Malicious extensions are mimicking trusted BO sidebars to deceive users. Stay informed and protect your credentials. #PotatoSecurity #AIThreats #BrowserSecurity Link: thedailytechfeed.com/emerging-thr...
October 25, 2025 at 8:53 AM
covermevpn00.bsky.social
Understanding WebRTC Leaks: Hidden Privacy Vulnerability Explained#WebRTCLeak #BrowserSecurity #PrivacyVulnerability #VPNLeaks #OnlineSecurity #TechEducation #SecurityFlaws #PrivacyProtection
Understanding WebRTC Leaks: Hidden Privacy Vulnerability Explained
October 26, 2025 at 12:27 PM