Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security

...China hack Chrome, Edge and Safari for Tianfu Cup

  • White hat hackers in China hack Chrome, Edge and Safari for Tianfu Cup

    Over the weekend, a number of participating teams hacked into some of the world’s most popular web browsers, Wi-Fi routers and other software. The hackers tested vulnerabilities hidden in several popular apps, including Google Chrome, Microsoft Edge, and Apple's Safari. Participants also found vulnerabilities in Microsoft Office 365 and Adobe PDF Reader.

    The event concluded with the team 360Vulcan emerging as the leader. The team won a total bounty of $382,500 (Approx. Rs. 2,74,80,000) by exploiting vulnerabilities in Microsoft Edge, Adobe PDF Reader, MS Office 365, qemu+Ubuntu, and VMWare Workstation.

Major browsers Chrome, Safari, and Edge...

  • Major browsers Chrome, Safari, and Edge are easily hacked on day 1 of hacking contest

    Some of the world's leading browsers made by some of the world's biggest tech companies have been hacked in record time by computer security experts competing China's Tianfu Cup.

    The hackfest, established as an alternative to its Western counterpart, Pwn2Own, puts software and devices to the test as researchers look for Zero-day bugs – unfixed vulnerabilities that can be exploited by bad actors.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Alder Lake S Support Added To Intel's Open-Source Media Driver

Last quarter Intel began upstreaming their open-source Alder Lake S graphics support for Linux. It hasn't been too big of a feat or revealed many details since it's still Gen12 / Xe graphics seen since Tiger Lake. But it's been coming along and over the past month is now wired up into Intel's open-source Media Driver stack too. Merged back on Christmas was the initial decode patch for Alder lake S (ADL_S) that was just a few hundred lines of code thanks to largely re-using the existing Gen12 driver code paths. Read more Also: Intel Alder Lake S Graphics Support Nearing The Mainline Linux Kernel - Phoronix

Best Game Console Emulators for Linux

This article will list popular game console emulation software available for Linux. Emulation is a software compatibility layer that emulates hardware components of game consoles, instruction sets and related APIs. Emulation software can emulate CPUs, GPUs, audio hardware and many other such physical components available in real game consoles. Emulation allows you to play console exclusive games that are otherwise unplayable on PCs. Games running on these emulators see emulated components as if they were parts of a real game console and they cannot see the underlying platform (PC) on which the game is running on. Developing an accurate game emulator for PC is an extremely difficult task, involves reverse engineering and many times developers have to sacrifice accuracy to improve compatibility. Emulators require original file system dump from game consoles. Some emulators emulate these components as well making it easier to play games. To play games on emulators, you must have game files, typically called ROMs. Read more Also: Best Linux Distros for Gaming in 2021

Best Dictionary Apps for Linux

GNOME Dictionary is a minimal and straightforward dictionary app for Linux. GNOME dictionary is one of the official GNOME-3 applications and it is available in almost all major Linux distributions. It can query definitions of words and phrases from a number of online sources. Unfortunately, it doesn’t have any mechanism to download offline dictionary databases. Read more

IBM/Red Hat/Fedora: Chromium, Cloudwashing, Chris Wright and CentOS 'Damage Control'

  • Fedora preemptively turns off Chromium usage of private Google Sync APIs

    Fedora has jumped seven weeks before Google ends the Linux distribution's use of the Google Chrome Sync service within the Chromium browser. The Sync service allows users to keep data such as browser history, login details, and bookmarks synced between different devices. Earlier this month, Google said it completed an audit, and was restricting the open source version of Chrome from accessing those APIs "that are only intended for Google's use". Notifying Fedora users over the weekend, Chromium maintainer for the distribution Tom Callaway said the change will make the program "significantly less functional". [...] To that end though, by closing off the service, Fedora is able to fix 26 security vulnerabilities. Version 88.0.4324.96-1 of Fedora Chromium will be the first to have Sync disabled, and landed as an update in repositories over the weekend. Google said it would be locking down access to the Sync service on March 15. Some Chromium-based browsers do offer a non-Google sync solution.

  • IBM Cloud Now: GitLab Ultimate for IBM Cloud Paks, Security Insights, and WebSphere Hybrid Edition
  • Technically Speaking: Season 1 Trailer

    Join Red Hat CTO Chris Wright and a rotating cast of experts and industry leaders for the first season of the all-new Technically Speaking. In each episode, Chris will explore what's on the horizon for open source and topics like cloud, AI/ML, edge, 5G, blockchain, and more. The first episode drops on January 27, 2021. Subscribe to our YouTube channel to tune in.

  • To plug gap left by CentOS, Red Hat amends RHEL dev subscription to allow up to 16 systems in production

    Red Hat, which is killing CentOS Linux in favour of CentOS Stream, will extend its developer subscription to allow free production use of RHEL for up to 16 systems. CentOS Linux is a community build of Red Hat Enterprise Linux (RHEL) and therefore suitable for production use. CentOS Stream, which will remain available, is a preview build of what is likely to be in RHEL – great for testing but not ideal for production use. The popularity of CentOS, which drives 17.7 per cent of Linux-based web sites, according to W3Techs, has meant a strong response to Red Hat's decision, including alternative free builds such as Rocky Linux and Project Lenix, which is now known as Alma Linux. Red Hat said in December that it would work to plug the gap left by CentOS with new ways to license RHEL and today's statement is said to be "the first of many new programs."