Google researchers uncover two zero-days affecting Chrome, Windows
Both vulnerabilities could allow hackers to escape the “sandboxes” that software programs use as safeguards against malicious activity.
This tool allows you to check the code powering Chrome extensions
Automation can help with the laborious but important work of tracking the third-party code used by extensions.
Google paid $2.9 million in bug bounties in 2017
Google is also expanding the Google Play Security Reward Program to include remote code executions on popular apps. Rewards range from $1,000 to $5,000.
Bug in Grammarly browser extension exposes what a user ever writes
The browser extension has access to virtually everything a user types and therefore an attacker could access a huge trove of private data.
Opera adds cryptojacking defense to latest desktop browser
Opera's version 50 will be the first browser with an anti-cryptojacking feature baked in from the beginning.
Google Chrome introduces new security measures against malvertising
Increasingly popular malvertising tactics are being addressed, beginning in January 2018.