Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Fail: Chrome, Firefox, and IE all crack during hacking competition
Washington Post ^ | 3/11/13 | Meghan Kelly

Posted on 03/11/2013 7:11:28 AM PDT by Nachum

Chrome, Internet Explorer, and Firefox all fell to the mercy of the hackers Thursday. That is, in a controlled environment. Security firms Vupen and MWR Labs were able to crack the browsers during a condoned bug-hunt, with one company winning $100,000 for finding a huge hole. The Pwn2Own competition is an event at the CanSecWest conference in Vancouver. The competition was created by HP’s DVLabs as part of its Zero Day Initiative: an attempt to get more people to find and report bugs as opposed to exploiting them for personal gains.

(Excerpt) Read more at washingtonpost.com ...


TOPICS: News/Current Events
KEYWORDS: browser; browsers; chrome; cybersecurity; fail; firefox; hacker; ie; miserablefailure; opera; trident
Navigation: use the links below to view more comments.
first 1-5051-53 next last

1 posted on 03/11/2013 7:11:28 AM PDT by Nachum
[ Post Reply | Private Reply | View Replies]

To: Nachum

Hackers are among the lowest forms of life on earth; blowing up the site of that competition would have been a patriotic act!


2 posted on 03/11/2013 7:16:48 AM PDT by JimRed (Excise the cancer before it kills us; feed &water the Tree of Liberty! TERM LIMITS, NOW & FOREVER!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Nachum

I am stuck at firefox 3.6.18

Every firefox version since then (almost 3 years ago) loads the saved window positions from the taskbar, IN REVERSE order. No fix in 3 years. These outfits create the customer dissatisfaction.

Now my bank is intentional blocking my firefox version from working, trying to force me to upgrade. I cannot control my own monies if I don’t change my computer ways.


3 posted on 03/11/2013 7:18:04 AM PDT by George from New England (escaped CT in 2006, now living north of Tampa)
[ Post Reply | Private Reply | To 1 | View Replies]

To: George from New England

They want you to upgrade because your version of firefox is hopelessly out of date.


4 posted on 03/11/2013 7:24:02 AM PDT by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: JimRed

It’s best to read and understand the article before posting comments.


5 posted on 03/11/2013 7:26:20 AM PDT by Jack of all Trades (Hold your face to the light, even though for the moment you do not see.)
[ Post Reply | Private Reply | To 2 | View Replies]

To: Nachum

Life is too short to obsess over software..


6 posted on 03/11/2013 7:27:03 AM PDT by bigbob
[ Post Reply | Private Reply | To 1 | View Replies]

To: rdb3; Calvinist_Dark_Lord; Salo; JosephW; Only1choice____Freedom; amigatec; stylin_geek; ...

7 posted on 03/11/2013 7:31:55 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: George from New England

I use Slimbrowser. It works very well.


8 posted on 03/11/2013 7:34:44 AM PDT by Dan(9698)
[ Post Reply | Private Reply | To 3 | View Replies]

To: George from New England

Well, try getting rid of Windows 98SE on your computer..........;^)


9 posted on 03/11/2013 7:36:40 AM PDT by Red Badger (Lincoln freed the slaves. Obama just got them ALL back......................)
[ Post Reply | Private Reply | To 3 | View Replies]

To: Nachum

I expected IE (Internet Exposure) to epic fail, I expected “Don’t Be Evil” google’s Chrome to blab all it knows (for a price), but I’m disappointed that Firefox did so poorly.


10 posted on 03/11/2013 8:13:05 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: null and void

Firefox released 19.0.2 the next day in response to the failure.


11 posted on 03/11/2013 8:16:48 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 10 | View Replies]

To: driftdiver
They want you to upgrade because your version of firefox is hopelessly out of date.

I had an ISP tech support guy tell me once that my software was worn out. That could be the problem.

12 posted on 03/11/2013 8:18:36 AM PDT by Fresh Wind (The last remnants of the Old Republic have been swept away.)
[ Post Reply | Private Reply | To 4 | View Replies]

To: ShadowAce

Good to know, I upgraded within minutes of the upgrade’s release.

I also note that the hacks were all on windoze systems, I don’t use the windoze half of my iMac on the net.


13 posted on 03/11/2013 8:24:21 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 11 | View Replies]

To: martin_fierro; Ernest_at_the_Beach; Swordmaker; ShadowAce

Thanks Nachum.


14 posted on 03/11/2013 8:24:28 AM PDT by SunkenCiv (Romney would have been worse, if you're a dumb ass.)
[ Post Reply | Private Reply | View Replies]

To: null and void
I don’t use the windoze half of my iMac on the net.

Where is the other half of your iMac?

15 posted on 03/11/2013 8:26:10 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 13 | View Replies]

To: George from New England

Maybe you made a typo but it looks like 3.6.28 was the last for the 3.6 Firefox releases. Still, as a security fix it’s a year old and the underlying technology is years out of date.

I don’t understand what you mean by loading the saved window versions in reverse order compared to the 3.6 release. Have you reported the bug or do you just expect it to be known and fixed without prompting?

Your bank is absolutely right in blocking a release that old for your own security.


16 posted on 03/11/2013 8:31:15 AM PDT by newzjunkey (bah)
[ Post Reply | Private Reply | To 3 | View Replies]

To: ShadowAce
That freeper probably used "bootcamp" from Mac OS X to have both Windows and Mac OS X on the iMac.

The inference is "half" the disk was loaded with Windows and "half" kept Mac OS X.

17 posted on 03/11/2013 8:34:04 AM PDT by newzjunkey (bah)
[ Post Reply | Private Reply | To 15 | View Replies]

To: Nachum

No mention of Opera v12.14, the one I use. Probably got ‘holes’, too. Nothing’s 100% secure, out there, I’m guessing.


18 posted on 03/11/2013 8:36:35 AM PDT by carriage_hill (AR-10s & AR-15s Are The 21st Century's Muskets. Free Men Need Not Ask Permission!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ShadowAce

In a “Parallels” universe...


19 posted on 03/11/2013 8:38:03 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 15 | View Replies]

To: null and void

LOL! Good answer.


20 posted on 03/11/2013 8:38:39 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 19 | View Replies]

To: George from New England

I just started FF and it’s up to v19.0, already, with updates and fixes.


21 posted on 03/11/2013 8:39:24 AM PDT by carriage_hill (AR-10s & AR-15s Are The 21st Century's Muskets. Free Men Need Not Ask Permission!)
[ Post Reply | Private Reply | To 3 | View Replies]

To: newzjunkey

Yes, and that’s because some of my CAD programs are windoze only.


22 posted on 03/11/2013 8:39:36 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 17 | View Replies]

To: null and void

I got a “search here” virus on my Firefox browser.. had to stop using it. too bad, I really liked that browser. been using Chrome since then which is faster anyway. I plan on trying that Slimbrowser.. was never into the Opera browser.


23 posted on 03/11/2013 8:44:42 AM PDT by Chuzzlewit
[ Post Reply | Private Reply | To 22 | View Replies]

To: Fresh Wind

Well it is worn out in a way. Its like a old house which hasn’t been maintained and nobody cares enough to secure it.

All the windows and doors are wide open and you have a sign welcoming people who want to steal from you.


24 posted on 03/11/2013 8:50:04 AM PDT by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 12 | View Replies]

To: carriage_hill

Nothing is 100% secure, or even 90% secure.


25 posted on 03/11/2013 8:51:30 AM PDT by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 18 | View Replies]

To: Jack of all Trades
It’s best to read and understand the article before posting comments.

So, you don't feel that the entrants in the competition are the same ones who attack systems for fun and profit? What would keep that kind out?

I've long suspected that the companies which sell anti-virus and computer fixes hire people to create new problems so that they can sell the "fix". I'd love to be proven wrong.

26 posted on 03/11/2013 9:05:48 AM PDT by JimRed (Excise the cancer before it kills us; feed &water the Tree of Liberty! TERM LIMITS, NOW & FOREVER!)
[ Post Reply | Private Reply | To 5 | View Replies]

To: driftdiver

I find that to free up system memory I need to restart firefox once or twice a day. No Problem as long as firefox will reopen the same windows I had prior to shutdown, in the same taskbar order. 3.6.xx does that. All subsequent version do not. On restart, newer ff’s reverse the order of the windows in the taskbar.

If any freeper wants to try this on their ff version, just launch the Windows Task Manager and under the Process tab, select Firefox and right-click to End Process. When ff restarts it will have an oops msg, you select to Restore and see what the outcome is.


27 posted on 03/11/2013 9:12:54 AM PDT by George from New England (escaped CT in 2006, now living north of Tampa)
[ Post Reply | Private Reply | To 4 | View Replies]

To: driftdiver

True, that.


28 posted on 03/11/2013 9:16:21 AM PDT by carriage_hill (AR-10s & AR-15s Are The 21st Century's Muskets. Free Men Need Not Ask Permission!)
[ Post Reply | Private Reply | To 25 | View Replies]

To: newzjunkey

https://bugzilla.mozilla.org/show_bug.cgi?id=712763

Loads saved windows in reverse order when starting, previous selected window ...

Status: RESOLVED FIXED (but its not)
Component: Session Restore

Target Milestone: Firefox 21 (someday I guess)


29 posted on 03/11/2013 9:17:47 AM PDT by George from New England (escaped CT in 2006, now living north of Tampa)
[ Post Reply | Private Reply | To 16 | View Replies]

To: George from New England

“...will have an oops msg...”

No thanks; reminds me too much of the BSOD. Haven’t had one of those in I-can’t-remember-when, so I’ll pass on it.


30 posted on 03/11/2013 9:18:53 AM PDT by carriage_hill (AR-10s & AR-15s Are The 21st Century's Muskets. Free Men Need Not Ask Permission!)
[ Post Reply | Private Reply | To 27 | View Replies]

To: carriage_hill

Oops ...

Nothing more than the restart message from ff when there has been a crash. If I stop ff in Task Manager the restart thinks there was a crash. Fine, no issue here.

It’s just there is no fix from ff, see post 29.


31 posted on 03/11/2013 9:22:42 AM PDT by George from New England (escaped CT in 2006, now living north of Tampa)
[ Post Reply | Private Reply | To 30 | View Replies]

To: George from New England

So you’d prefer to have gaping holes in the security of your desktop?


32 posted on 03/11/2013 9:24:32 AM PDT by driftdiver (I could eat it raw, but why do that when I have a fire.)
[ Post Reply | Private Reply | To 27 | View Replies]

To: Chuzzlewit

“I got a “search here” virus on my Firefox browser.. had to stop using it. “

The ‘cure’ for that problem is to ‘reset’ Firefox.

Go to ‘Help’ > ‘Trouble Shooting Information’ > ‘Reset Firefox’ (on the top right). Click it.

Firefox will reset to ‘default’ without losing your Bookmarks or saved passwords.

It will then create and ‘old Firefox’ folder on the desktop that you can either keep as a ‘backup’ or delete.

I deleted mine. (After all, that’s where the problem was in the first place)


33 posted on 03/11/2013 9:25:11 AM PDT by Bigh4u2 (Denial is the first requirement to be a liberal)
[ Post Reply | Private Reply | To 23 | View Replies]

To: George from New England

Why don’t you use a virtualized version with the updated browser, specifically to access your bank, then just leave the version you want on your computer.


34 posted on 03/11/2013 9:28:39 AM PDT by nickcarraway
[ Post Reply | Private Reply | To 3 | View Replies]

To: George from New England

Da-YAM!!! that just sped up everything about a zillion times!!!


35 posted on 03/11/2013 10:57:42 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 27 | View Replies]

To: null and void

While we are here, how do I stop the auo-recall or auto-insert function in FF. It remembers account info.


36 posted on 03/11/2013 11:31:21 AM PDT by SgtHooper (The last thing I want to do is hurt you. But it's still on the list.)
[ Post Reply | Private Reply | To 35 | View Replies]

To: null and void

You do realize OSX was the first broken OS for 3 straight years. Being on OSX doesn’t make you safe online.


37 posted on 03/11/2013 11:32:42 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 13 | View Replies]

To: for-q-clinton

As long as the leftists are in power, I will never be safe on line.


38 posted on 03/11/2013 11:36:18 AM PDT by null and void (Gun confiscation enables tyranny. Don't enable tyranny.)
[ Post Reply | Private Reply | To 37 | View Replies]

To: SgtHooper

Preferences—>Security—>Passwords


39 posted on 03/11/2013 12:04:24 PM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 36 | View Replies]

To: Dan(9698)

This is the first I’ve heard of Slimbrowser. How does it compare to Firefox or IE9?


40 posted on 03/11/2013 2:55:31 PM PDT by ducttape45
[ Post Reply | Private Reply | To 8 | View Replies]

To: ducttape45

Its free download it and try it.

I like it better than others.

Its tabbed and easy to use.

http://www.slimbrowser.net/en/


41 posted on 03/11/2013 4:05:43 PM PDT by Dan(9698)
[ Post Reply | Private Reply | To 40 | View Replies]

To: bigbob; George from New England; Dan(9698); driftdiver; ShadowAce; null and void; newzjunkey; ...
There are many decent alternative, more functional and safer "skins" that help prevent or eliminate certain UI problems, though they may be not effective against some attacks due to shared / open-source code and proliferation of apps with third-party environments such as Java / Ajax, Flash, javascript, ASP etc.

One of the safer and well done Chromium/AppleWebKit KHTML browsers (Safari, Chrome, Chrome+ etc.) is Comodo Dragon. Comodo also makes a Firefox (Gecko HTML) "clone" IceDragon. Both share a nice, light Comodo user interface and seem more stable than their better-known "original" browsers. Comodo is well-known Web security firm and has other free programs like firewall, AV and email apps (Comodo free products download page)

Also check out their excellent CCE (Comodo Cleaning Essentials) which contain a stand-alone KillSwitch (IP activity monitor), one of the best full-function Autoruns programs, and CCE AV scanners, as well as their firewall, which is considered one of the lightest and best security products in CPU and memory utilization.

SRWare makes Iron, which is also claimed to be more secure and more privacy-oriented than its open-source Chromium "cousins" Chrome and Safari.

Opera has been an excellent choice of different browser, though many of its early advantages over other browsers have been somewhat diminished due to features incorporated in latest versions of open-source and IE browsers.

For people who like or must use IE, there are several free alternative browsers that use IE-engine, with much better, more usable "skins" and many useful built-in extensions and add-ons :

1. Slimbrowser from FlashPeak that was already mentioned here (fast, tabbed, QuickFilll form-filler, popup blocker, site grouping, language translator, DL manager and many handy UI options). FlashPeak now also makes SlimBoat which has a "skin" similar to its IE-based app but is based on Firefox/Gecko engines code.

2. Avant Browser is also fast, has many extensions (privacy, anti-freezing, memory leaks prevention, site grouping etc.) and features. Also, Avant Browser Ultimate is tri-core, which means it can be put in 3 different browser modes by user (Chrome, Firefox and IE) which could be handy if some web sites are shoddily coded and break the page or making it unattractive when rendered in some other browser.

3. Maxthon. Unfortunately, Maxthon 3 version is not anywhere as good as was Maxthon 2.

4. The World (Chinese) - nice, light browser with great recovery and anti-leak / CPU load options, but doesn't seem to be actively developed at this time.

5. QTWeb (also seems to have stopped development) - excellent, small, portable browser with several security features, quick engine-switch view modes and appearance skins.

FD: I am not beneficially involved with any of the above companies. This is just an (quite incomplete) information for the possible benefit of fellow FReepers.

42 posted on 03/11/2013 5:51:02 PM PDT by CutePuppy (If you don't ask the right questions you may not get the right answers)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Bigh4u2

thanks..

however, I uninstalled Firefox, then re-downloaded and the “search here” virus was still there. I did some research and my understanding is that it is extremely hard to remove that virus. I followed all the removal steps from several sites and it was still a no go.

unless the reset button accomplishes something that uninstalling does not. is that possible?


43 posted on 03/12/2013 7:45:36 AM PDT by Chuzzlewit
[ Post Reply | Private Reply | To 33 | View Replies]

To: Chuzzlewit

The reason the ‘search here’ virus was still there is because Firefox keeps your old settings. Even when doing an ‘uninstall and ‘reinstall’.

That’s why you have to do a ‘reset’ in order to remove it.

It happened to mine twice and my wife’s once, and a ‘reset’ fixed it each time.

Try it.


44 posted on 03/12/2013 7:49:58 AM PDT by Bigh4u2 (Denial is the first requirement to be a liberal)
[ Post Reply | Private Reply | To 43 | View Replies]

To: Bigh4u2

will do... thanks


45 posted on 03/12/2013 9:50:47 AM PDT by Chuzzlewit
[ Post Reply | Private Reply | To 44 | View Replies]

To: Bigh4u2

worked... thanks so much for your help.


46 posted on 03/13/2013 11:26:44 AM PDT by Chuzzlewit
[ Post Reply | Private Reply | To 44 | View Replies]

To: Chuzzlewit

Cool..

;0)


47 posted on 03/13/2013 11:43:14 AM PDT by Bigh4u2 (Denial is the first requirement to be a liberal)
[ Post Reply | Private Reply | To 46 | View Replies]

To: null and void
...some of my CAD programs are windoze only.

I hear you, mate. Most of the ones I have are the same way -TurboCAD, ProCAD, OrCAD, DesignCAD, to name just a few, all run 'doze-only, with only a few performing marginally if at all under Wine on a Linux system that allow them to be used at all. Very few alternatives available for the Linux desktop, unfortunately, and the Spice proggies are just as bad, with no offerings in the Mechanical Stress Modeling even hinted at as of yet.

48 posted on 03/18/2013 6:37:28 PM PDT by Utilizer
[ Post Reply | Private Reply | To 22 | View Replies]

To: Bigh4u2
Go to ‘Help’ > ‘Trouble Shooting Information’ > ‘Reset Firefox’ (on the top right)

What version are you running? I've got 9.0.1 running here and there is no such option that I can see.

49 posted on 03/18/2013 6:47:42 PM PDT by Utilizer
[ Post Reply | Private Reply | To 33 | View Replies]

To: Dan(9698)

Apparently, it is ‘doze-only. Think I will stick with Opera and Firefox for now...


50 posted on 03/18/2013 6:49:02 PM PDT by Utilizer
[ Post Reply | Private Reply | To 41 | View Replies]


Navigation: use the links below to view more comments.
first 1-5051-53 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson