Taking too long? Close loading screen.
Connect with us

Tech

How to Block ‘Address Bar Spoofing’ Attacks on Your Mobile Browser

Published

on

We write about web browsers at lot at Lifehacker—so much that I feel as if talking about the latest Chrome, Firefox, Edge, or Safari features is a weekly kind of a conversation you and I have. I confess, even I get a little fatigued, but it’s important that we keep chatting, because having a browser that’s updated with the latest features—and security patches—is good for your digital life.

Advertisement

Honestly, I could care less if you use any of the new features that your browser’s developer rolls out from time to time—if you’re fine with surfing the web however as-is and don’t need any more bells or whistles to distract you from your daily online habits, that’s perfectly fine. Never feel you have to do more if you don’t want to.

Advertisement

But don’t take my suggestion as a sign that you should ignore when your browser’s developer releases a new version. Because these update aren’t just about features. They’ll also contain various under-the-hood fixes for mystifying bugs and security vulnerabilities. And that’s what you’ll want to have the day they’re released, because they help you hop around the web safer.

Case in point: There’s a big piece of research going around right now about how some browsers—including the mobile versions of Opera and Safari—are, or were, vulnerable to some “JavaScript shenanigans” that a website could use to spoof its actual URL in your browser’s address bar. As Rapid7 Director of Research Tod Beardsley recently wrote for the company’s blog:

“In all cases, the victim would have to visit a website that the attacker can post executable javascript to. Normally, this wouldn’t include websites like Facebook, Reddit, Twitter, or other online forums (they do a pretty good job in protecting against aforementioned Javascript shenanigans), but would include a website that was set up by the attacker and sent to the victim through a phishing email, a phishing text message, or a post to a popular forum. So, for example, imagine a text message from a spoofed phone number that says, ‘There is an important message from your payment processor, click here” and then you click without really looking, and end up on a web page that clearly (but falsely) says it’s Paypal, and hey, can you give up your password real quick?’”

Sounds scary, right? Well, the good news is that major browsers affected by this issue—namely, Safari and Opera Mini/Touch—were already patched prior to Beardsley going public with his report. For third-party browsers you’ve downloaded, like Opera, this means that all you have to do is make sure you’re regularly keeping them updated via Apple’s App Store or the Google Play Store.

That’s it! Just keep updating your apps. Never stop updating your apps.

Advertisement

For Safari in particular, you’ll want to make sure that you’re always running the latest version of iOS that you can get your hands on, as Apple doesn’t update the browser via its App Store, like you might expect. Instead, Apple pushes browser updates via system updates—which can be in the form of a major iOS release (iOS 13 > iOS 14), or an incremental release (iOS 14.0.1, for example).

While most modern iPhones should update to new versions of iOS automatically, you can check to see if this setting is enabled and update your device manually, if applicable. Just visit Settings > General > Software Update. It’s as easy as that, and it’s something you shouldn’t dawdle about doing. Again, it’s totally fine to not care about the features found in a new browser version, or even a new operating system version. Update your apps, and operating system, to keep yourself as safe and secure as possible. It’s simple, really.

Advertisement

Source

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Tech

Keep That Hotdish Hot With 65% Off a Luncia Casserole Carrier, Only $11 With Promo Code

Published

on

Best Home DealsBest Home DealsThe best home, kitchen, smart home, and automotive deals from around the web, updated daily.

Luncia Double-Decker Dish Carrier | $11 | Amazon | Promo code SDDU9S7F

It has been a long time since the days we could safely have a potluck or other gatherings, but we have a fantastic deal perfect for once those times return. These double-decker Luncia dish carriers can be had for 65% off when you add promo code SDDU9S7F at checkout and clip the coupon on the site (it’s just below the price). These holders fit 9″x 13″ sized baking dishes.

Advertisement

That means you can insulate and keep two dishes of food warm for only $11 instead of $30. What’s more, your Luncia carrier will arrive by Christmas if you order today as a Prime member.

Just add promo code SDDU9S7F and clip the 5% off coupon to bring the price down to $11 for the blue or the grey option.

Advertisement

Grab this offer while it’s still around!


Source

Continue Reading

Tech

Conquer Your Pup’s Dander and Fur With $700 Off a Cobalt or Charcoal Bobsweep PetHair Plus Robot Vacuum

Published

on

Best Home DealsBest Home DealsThe best home, kitchen, smart home, and automotive deals from around the web, updated daily.

Bobsweep PetHair Plus Robot Vacuum & Mop (Cobalt) | $200 | Best Buy

Bobsweep PetHair Plus Robot Vacuum & Mop (Charcoal) | $200 | Best Buy

Allergies can be bad enough as the seasons change. Don’t let pet hair and dander add to that by vacuuming it up early and often. That chore is easier said than done— unless you have a robot vacuum to do the work for you. This lovely bright cobalt Bobsweep PetHair Plus robot vacuum and mop, only $200 today at Best Buy seems like an ideal option. That’s a whopping $700 off, by the way.

Advertisement

You can get the same deal for the charcoal version of the robot vac, too. This model is not only specially made for picking up pet hair, it self docks and charges when it’s finished with the work.

It also comes with a mop attachment, so it can take care of those kitchen floors for you as well. Grab it while it’s still available for this fantastic price!

Advertisement


Source

Continue Reading

Tech

Apple will replace AirPods Pro for free with faulty noise cancellation, static or crackling

Published

on

Today, exactly one year after Apple first launched the AirPods Pro — and thus the same day the very first AirPods Pro owners will see their one-year warranties expire — Apple has launched a repair program that offers free repairs or replacements for another whole year if your AirPods Pro experience issues with noise cancellation or static.

Specifically, Apple will fix:

Crackling or static sounds that increase in loud environments, with exercise or while talking on the phone

Active Noise Cancellation not working as expected, such as a loss of bass sound, or an increase in background sounds, such as street or airplane noise

Apple says only a “small percentage of AirPods Pro” are affected by the issues, but it apparently wasn’t just an early batch — Apple says affected units were manufactured “before October 2020,” meaning every AirPods Pro ever made might be eligible. That’s quite a recall if so. Apple says it will repair faulty AirPods Pro for two years after you first buy them.

We’ve heard complaints about degraded noise cancellation before, and at least one Verge editor has replaced their AirPods Pro under warranty. It’s nice to hear that Apple isn’t just cutting buyers off as soon as that warranty expires.

Source

Continue Reading

Trending