Hello Guest, welcome to torrentinvites.org - Your #1 source for Torrent Invites!
CLICK HERE to register for free and gain full access to TI.org!
Torrent Invites! Buy, Trade, Sell Or Find Free Invites, For EVERY Private Tracker! HDBits.org, BTN, PTP, MTV, Empornium, Orpheus, Bibliotik, RED, IPT, TL, PHD etc!
-
Comodo's 'secure' browser leaves users in danger
Users of Comodo Internet Security are being warned against using the Chromodo web browser that the security suite installs on users systems. Tavis Ormandy, a security researcher with Google's Project Zero, has uncovered that the Chromodo browser disables its same-origin policy safeguards.
Same-origin policy is a safeguard built into Chrome - which Chromodo is based on; the same-origin policy ensures that scripts can only access data in another script if they both originate from the same site. Without this safeguard enabled, bad guys can get access to your private data.
The issue, which is documented on Google Code, is now reported as fixed and was subsequently made public. However, Ormandy notes that Comodo has only deployed a trivial fix which prevents the exploit that was shown to the security firm. Tavis notes that despite the fix, it is still rather trivial to bypass, and Comodo isn't being too responsive, which may delay the release of an actual solution.
When Comodo Internet Security is installed, Chromodo is automatically made the default browser. In addition, all of your Chrome data - including settings, cookies, and bookmarks - are imported into Chromodo. To top everything off, Ormandy says that Comodo Internet Security hijacks DNS settings.
Usually, the convenience Chromodo provides by porting all the information over from Chrome wouldn't matter so much, but because it can't provide basic security it could potentially become a major headache for users.
The best course of action for users of Comodo Internet Security is to completely remove the software from their systems. For those of you running the latest versions of Windows, your system comes with Windows Defender built in which acts as a decent repellent of malware, at no charge.
Source: Google Code
Tags for this Thread
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules