Firefox updated to 20.0

Posted by:
Date: Tuesday, April 2nd, 2013, 09:12
Category: News, Software

elfirefox

And just a few years ago, they were at version 3.0…

On Tuesday, Mozilla.org released version 20.0 of its Firefox web browser. The new version, a 38.3 megabyte download and adds the following fixes and changes:

New:
- Security fixes.

- Per-window Private Browsing.

- New download experience.

- Ability to close hanging plug-ins, without the browser hanging.

- Continued performance improvements around common browser tasks (page loads, downloads, shutdown, etc.).

- Continued implementation of draft ECMAScript 6 – clear() and Math.imul.

- New JavaScript Profiler tool.

- getUserMedia implemented for web access to the user’s camera and microphone (with user permission).

Various:
- Details button on Crash Reporter.

- Unity plugin doesn’t display in HiDPI mode.

Known Issues:
- If you try to start Firefox using a locked profile, it will crash.

- Some function keys may not work when pressed.

- Browsing and Download history clearing needs unification to avoid confusion on clearing download history.

- Download statusbar add-on continues downloading files from Normal.

- Browsing, when switching to Private Browsing.

- Copy actions are broken on HTML5 videos.

Firefox 20.0 requires an Intel-based Mac running Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Google Chrome updated to 26.0.1410.43

Posted by:
Date: Wednesday, March 27th, 2013, 05:12
Category: News, Software

google-chrome-logo

You can’t knock a worthwhile update.

On Tuesday, Google released version 26.0.1410.43 of its Chrome web browser. The update, a 48.8 megabyte download, adds the following fixes and changes:
- “Ask Google for suggestions” spell checking feature improvements (e.g. grammar and homonym checking).

- Desktop shortcuts for multiple users (profiles) on Windows.

- Asynchronous DNS resolver on Mac and Linux.

Google Chrome 26.0.1410.43 requires an Intel-based Mac with Mac OS X 10.6 or later to install and run. If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Apple includes Yontoo trojan on XProtect.plist database

Posted by:
Date: Monday, March 25th, 2013, 07:37
Category: News, security, Software

With any luck, the Yontoo trojan won’t be around on the Mac OS X platform for long.

Per the Intego Security Blog and MacRumors, shortly after news emerged of a new adware trojan targeting OS X web browsers, Apple updated its malware and adware detections list to block Yontoo.

The company has apparently updated its “XProtect” anti-malware system. XProtect.plist will now recognize Yontoo and warn users that attempt to install the software on their computers.

Intego’s post notes that the XProtect detection “is very specific and potentially location-dependent.” The extra specificity, Intego supposes, may be there in order to stop only indirect installations of the file.

News of the Yontoo trojan emerged recently when a Russian anti-virus company pointed out its existence. Yontoo asks users if they want to install a browser plugin, media player, download accelerator, or other video-oriented program. Upon agreeing to the download, the plugin begins transmitting browsing data to an off-site server. User browsing data is processed, and the server sends back a file embedding third-party code into webpages visited by the user. The viewing or clicking of embedded ads then generates ad affiliate network profits for the criminals behind the adware.

Stay tuned for additional details as they become available.

Advertising-based trojan goes into wild on Mac OS X, Windows platforms

Posted by:
Date: Thursday, March 21st, 2013, 07:55
Category: Hack, News, security, Software

The available list of Mac malware (and jerks creating it) just grew a bit.

Per MacNN, a new Mac trojan is inserting ads into Safari, Chrome, and Firefox, says a Russian security firm, Doctor Web. Nicknamed “Trojan.Yontoo.1,” the malware is so far being distributed through movie trailer pages, which prompt people to download a browser plugin, a media player, a video enhancer, or a download accelerator. When launched, the malware asks to be installed under a name such as “Free Twit Tube.”

In reality, the installer inserts a plugin into the aforementioned browsers, which transmits data about the websites a person visits to a remote server, and inserts ads into places in sites where they wouldn’t otherwise exist. Visiting the official Apple page for the iPad mini, for instance, may trigger an ad for unrealistically low iPad discounts. Doctor Web notes that the attackers could potentially swap out the plugin for different or updated code.

The malware is targeting Windows systems as well, but Doctor Web comments that hackers are increasingly targeting Mac owners, and that such ad schemes generate money regardless of the platform they’re on. The hackers likely receive money for each ad impression, and more if a person actually clicks on an ad. There doesn’t appear to be any defense against the trojan in OS X at the moment, short of rejecting the installation; Apple may, however, be able to create a safeguard by updating the OS’ blacklist.

Stay tuned for additional details as they become available.

Google Chrome updated to 25.0.1364.172

Posted by:
Date: Wednesday, March 13th, 2013, 07:08
Category: News, security, Software

google-chrome-logo

Hey, take an update where you can find it.

On Wednesday, Google released version 25.0.1364.172 of its Chrome web browser. The update, a 48.8 megabyte download, adds the following fixes and changes:

- This release contains stability improvements, and a new version of Adobe Flash.

Google Chrome 25.0.1364.172 requires an Intel-based Mac with Mac OS X 10.6 or later to install and run. If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Mozilla VP confirms that Firefox won’t be ported to iOS until Apple relaxes web browser stipulations

Posted by:
Date: Monday, March 11th, 2013, 07:12
Category: News, Software

elfirefox

If you were hoping to see Firefox on your iOS browser, it might never happen.

Per CNET, Mozilla vice president Jay Sullivan was quoted as saying that Firefox will not be coming to iPads and iPhones until Apple decides to loosen the restrictions governing browsers iOS.

The comments, which came at a South by Southwest Interactive panel on Saturday. Sullivan says Apple’s current rules — which forbid browsers that do not use Apple’s version of WebKit — make it so that Firefox cannot build the browser it wants to for Apple’s platform.

In addition to the WebKit requirement, iOS prevents users from setting any non-Safari app as the default means of handling browsing. Apple’s Mobile Safari is the top mobile browser according to industry reports, with about 60 percent share of all mobile browser usage.

Mozilla pulled its Firefox Home app from Apple’s App Store in September of 2012. The company isn’t working on an iOS version of Firefox and, according to Sullivan, doesn’t have any plans to do so.

Another member of the panel, Dolphin Browser’s David Dehgahn, lamented Apple’s policy as inhibiting competition.

“Competition is critical to our survival,” Dehgahn said. Sullivan and Mike Taylor from Opera Software — which recently released a WebKit-based version of Opera for iOS — agreed, saying that giving consumers browser choice was necessary in order to move the mobile web forward. Users suffer, they said, under Apple’s closed system.

CNet’s report says that the panel’s moderator then performed a quick poll of the audience, asking how many of them were suffering being largely limited to Safari. Very few hands were raised.

Stay tuned for additional details as they become available.

Google Chrome updated to 25.0.1364.160

Posted by:
Date: Friday, March 8th, 2013, 07:52
Category: News, security, Software

google-chrome-logo

You can’t fault a company for regularly updating its software.

On Friday, Google released version 25.0.1364.160 of its Chrome web browser. The update, a 48.8 megabyte download, adds the following fixes and changes:

- [Fixed] High CVE-2013-0912: Type confusion in WebKit.

Google Chrome 25.0.1364.160 requires an Intel-based Mac with Mac OS X 10.6 or later to install and run. If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Mozilla releases Firefox 19.0.2 update

Posted by:
Date: Friday, March 8th, 2013, 07:33
Category: News, Software

elfirefox

Hey, an update’s an update.

On Friday, Mozilla.org released version 19.0.2 of its Firefox web browser. The new version, a 39.6 megabyte download and adds the following fixes and changes:

- Security-driven release: [Fixed] Use-after-free in HTML Editor.

Firefox 19.0.2 requires an Intel-based Mac running Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Google Chrome updated to 25.0.1364.155

Posted by:
Date: Thursday, March 7th, 2013, 06:09
Category: News, Software

google-chrome-logo

Hey, an update’s an update.

On Wednesday, Google released version 25.0.1364.155 of its Chrome web browser. The update, a 48.8 megabyte download, adds the following fixes and changes:

- This release fixes a crash when typing in the Omnibox.

Google Chrome 25.0.1364.155 requires an Intel-based Mac with Mac OS X 10.6 or later to install and run. If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Oracle releases emergency Java patch, advises users to update to latest version

Posted by:
Date: Tuesday, March 5th, 2013, 08:58
Category: News, security, Software

javaicon

This is why updates were invented.

Per CNET, in response to discovering that hackers were actively exploiting two vulnerabilities in Java running in Web browsers, Oracle has released an emergency patch that it says should deal with the problem.

“These vulnerabilities may be remotely exploitable without authentication, i.e., they may be exploited over a network without the need for a username and password,” Oracle wrote in a security alert on Monday. “For an exploit to be successful, an unsuspecting user running an affected release in a browser must visit a malicious web page that leverages these vulnerabilities. Successful exploits can impact the availability, integrity, and confidentiality of the user’s system.”

Hackers were recently found using one of the vulnerabilities to get into users’ computers and install McRAT malware. Once installed, McRAT works to contact command, control servers, and copy itself into all files in Windows systems.

Only days after scheduling its last zero-day vulnerability in February, Oracle found these two new exploits. Rather than wait to include the patch in its scheduled quarterly April update, Oracle issued the emergency patch on Monday.

“In order to help maintain the security posture of all Java SE users, Oracle decided to release a fix for this vulnerability and another closely related bug as soon as possible,” Oracle software security assurance director Eric Maurice wrote in a blog post today.

According to Oracle, the most recent vulnerabilities are only applicable to Java running in Web browsers — they don’t affect Java running on servers, standalone Java desktop applications, or embedded Java applications. They also do not affect Oracle server-based software.

Users can install and update their Java software by going to the Java Web site or through the Java auto update.

Stay tuned for additional details as they become available.