[HackerNews] Microsoft Edge Bug Could’ve Let Hackers Steal Your Secrets for Any Site

Microsoft last week rolled out updates for the Edge browser with fixes for two security issues, one of which concerns a security bypass vulnerability that could be exploited to inject and execute arbitrary code in the context of any website.
Tracked as CVE-2021-34506 (CVSS score: 5.4), the weakness stems from a universal cross-site scripting (UXSS) issue that’s triggered when automatically

Source: Read More (The Hacker News)

You might be interested in …

[ZDNet] Google signs deal with US Air Force, announces FedRAMP High and IL4 authorizations

All posts, ZDNet

Google revealed that more government agencies will be able to use their tools now that they have two new security authorizations. Source: Read More (Latest topics for ZDNet in Security)

Read More

[BleepingComputer] Hacker dumps private info of pro-Trump GETTR social network members

Newly launched social site GETTR suffered a data breach after a hacker claimed to use an unsecured API to scrape the private information of almost 90,000 members and then shared the data on a hacking forum. […] Source: Read More (BleepingComputer)

Read More

[SecurityWeek] OpenSSF Bags $10 Million Investment

All posts, Security Week

The Linux Foundation has secured a new $10 million investment that will help  expand and support the Open Source Security Foundation (OpenSSF). read more Source: Read More (SecurityWeek RSS Feed)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.