Tag Archive for: browsing

NSA is buying Americans’ internet browsing records without a warrant


Image Credits: Brooks Kraft LLC / Corbis / Getty Images

The U.S. National Security Agency is buying vast amounts of commercially available web browsing data on Americans without a warrant, according to the agency’s outgoing director.

NSA director Gen. Paul Nakasone disclosed the practice in a letter to Sen. Ron Wyden, a privacy hawk and senior Democrat on the Senate Intelligence Committee. Wyden published the letter on Thursday.

Nakasone said the NSA purchases “various types” of information from data brokers “for foreign intelligence, cybersecurity, and authorized mission purposes,” and that some of the data may come from devices “used outside — and in certain cases, inside — the United States.”

“NSA does buy and use commercially available netflow data related to wholly domestic internet communications and internet communications where one side of the communication is a U.S. Internet Protocol address and the other is located abroad,” Nakasone said in the letter.

Netflow records contain non-content information (also known as metadata) about the flow and volume of internet traffic over a network, which can reveal where internet connections came from and which servers passed data to another. Netflow data can be used to track network activity traffic through VPNs and can help identify servers and networks used by malicious hackers.

The NSA did not say from which providers it buys commercially available internet records.

In a responding letter to the Office of the Director of National Intelligence (ODNI), which oversees the U.S. intelligence community, Wyden said that this internet metadata “can be equally sensitive” as location data sold by data brokers for its ability to identify Americans’ private online activity.

“Web browsing records can reveal sensitive, private information about a person based on where they go on the internet, including visiting websites related to mental health resources, resources for survivors of sexual assault or domestic abuse, or visiting a telehealth provider who focuses on birth control or abortion medication,” said Wyden in a statement.

Wyden said he learned of the NSA’s domestic internet records…

Source…

Chrome Exploits Patched To Secure Your Browsing


In a bid to fortify the security of its Chrome browser, Google has swiftly addressed seven vulnerabilities, with one particularly menacing zero-day exploit. This critical flaw, identified as CVE-2023-6345, centers around an integer overflow bug within Skia, an open-source 2D graphics library. Users can breathe a sigh of relief with the latest Chrome update, as critical security vulnerabilities have been addressed and Chrome exploits patched for enhanced online safety.

 

Google Chrome Security Updates

Discovered and reported by Benoît Sevens and Clément Lecigne from Google’s Threat Analysis Group on November 24, 2023, CVE-2023-6345 has gained notoriety for being actively exploited in the wild. An integer overflow vulnerability in Skia, this flaw poses a substantial risk to Chrome users.


The Silent Culprit: CVE-2023-2136 Resurfaces


Notably, this isn’t the first time an integer overflow in Skia has been exploited. In April 2023, Google tackled a similar issue (CVE-2023-2136) that had also fallen victim to zero-day exploitation. There’s a concerning possibility that CVE-2023-6345 may serve as a patch bypass for its predecessor.

CVE-2023-2136 allowed a remote attacker, who compromised the renderer process, to potentially execute a sandbox escape through a carefully crafted HTML page. The recurrence of this vulnerability emphasizes the evolving nature of cyber threats.


Chrome Exploits Patched

 

The latest Chrome security patches and updates mark Google’s proactive approach in addressing seven zero-day vulnerabilities since the beginning of the year. Each flaw is assigned a Common Vulnerability Scoring System (CVSS) score, highlighting its severity. 

The vulnerabilities include:

  • CVE-2023-2033 (CVSS score: 8.8) – Type confusion in V8
  • CVE-2023-2136 (CVSS score: 9.6) – Integer overflow in Skia
  • CVE-2023-3079 (CVSS score: 8.8) – Type confusion in V8
  • CVE-2023-4762 (CVSS score: 8.8) – Type confusion in V8
  • CVE-2023-4863 (CVSS score: 8.8) – Heap buffer overflow in WebP
  • CVE-2023-5217 (CVSS score: 8.8) – Heap buffer overflow in vp8 encoding in libvpx


Chrome Exploits Patched: Actions Required


To mitigate potential threats, users are strongly urged to upgrade to Chrome…

Source…

Leave Less Tracks Online By Clearing Your Browsing History


Our online activities leave a trail of data known as browsing history, containing records of the websites we visit, the searches we conduct, and the pages we interact with. It’s crucial to understand why clearing your browsing history is essential for safeguarding your privacy and online security, and exactly how to do it. Keep on reading for all the info.

Why you need to clear your browsing history

Here are three of the reasons why you need to regularly clear your browsing history:

To protect your sensitive info

Your browsing history contains a wealth of sensitive information. From login credentials to personal details entered on websites, this data would be immensely valuable to identity thieves, were it to fall into their hands. Clearing your browsing history regularly helps mitigate the risk of unauthorized access to your private information.

To take back control from advertisers

As you navigate the internet, your browsing history builds a profile of your interests. Advertisers and third parties may use this data to tailor ads and content specifically to you. By regularly clearing your browsing history, you stop them from being able to access information about your browsing preferences, allowing for a less intrusive online experience.

To enhance your online security

Stored cookies, which are bits of data that websites leave on your device, can potentially be exploited by cybercriminals. Clearing your browsing history eliminates these cookies, reducing the risk of unauthorized tracking and potential security vulnerabilities.

How to clear your browsing history

Below you will find instructions on how to clear your browsing history on desktop and mobile.

Chrome (desktop)

  1. Open Chrome and click on the three dots in the top-right corner.
  2. Select “History” > “History.”
  3. Click on “Clear browsing data” on the left sidebar.
  4. A pop-up window will appear. Choose the time range and select the types of information you want to delete.
  5. Click “Clear data.”

Edge (desktop)

  1. Open Edge and click on the three dots in the top-right corner.
  2. Select “History.”
  3. In the History pane that opens, click on the trash can icon.
  4. A pop-up window will appear….

Source…

The Top Mobile Anti-Malware Apps for Secure Browsing


The Top 10 Mobile Anti-Malware Apps for Secure Browsing in 2022

In the digital age, the security of our mobile devices is paramount. With the increasing prevalence of cyber threats, it’s more important than ever to ensure that our smartphones and tablets are protected. This is where mobile anti-malware apps come into play. These applications are designed to detect and eliminate malicious software, providing a secure browsing experience. As we move into 2022, let’s take a look at the top 10 mobile anti-malware apps that are leading the way in secure browsing.

Firstly, Norton Mobile Security is a well-known name in the cybersecurity industry. This app offers a comprehensive suite of features, including anti-malware protection, Wi-Fi security alerts, and web protection that blocks fraudulent websites. It also includes a system advisor that provides important updates about your device’s security.

Secondly, Bitdefender Mobile Security is another top contender. It offers robust malware protection and a minimal impact on system performance. It also includes anti-theft features, account privacy options, and a secure VPN for safe browsing.

Next up is Avast Mobile Security. This app offers a range of features including a virus scanner, a privacy advisor, an app locker, and a photo vault. It also includes a Wi-Fi speed test, providing a comprehensive security solution.

McAfee Mobile Security is another strong choice. It offers anti-theft features, security lock, Wi-Fi security, memory booster, and battery optimizer. It also includes a feature that takes a snapshot of the intruder and emails it to you.

Kaspersky Internet Security for Android is a powerful anti-malware app that offers real-time protection, anti-phishing features, and an automatic scanning option. It also includes a find my phone feature, making it a versatile choice for mobile security.

Webroot SecureAnywhere Mobile is a lightweight app that offers secure web browsing, lost device protection, and a battery and memory booster. It also includes a secure online shopping and banking feature, providing an extra layer of security.

ESET Mobile Security is another top-rated app. It offers real-time scanning, anti-phishing, and…

Source…