Explore what the browser exposes about you
https://neberej.github.io/exposedbydefault/
#HackerNews #Explore #Browser #Privacy #WebSecurity #DigitalFootprint #UserData #Transparency
Stefano Marinelli
boosted
Anyone know of a good curated list of JA3 fingerprints of known shitty bots? (Think: Alibaba, Tencent, AI slop, etc)
The only two I could find are:
f79b6bad2ad0641e1921aef10262856b
5cc600468c246704e1699c12f51eb3ab
Anyone know of a good curated list of JA3 fingerprints of known shitty bots? (Think: Alibaba, Tencent, AI slop, etc)
The only two I could find are:
f79b6bad2ad0641e1921aef10262856b
5cc600468c246704e1699c12f51eb3ab
Blocking LLM crawlers without JavaScript
https://www.owl.is/blogg/blocking-crawlers-without-javascript/
#HackerNews #BlockingLLMcrawlers #JavaScript #CrawlerProtection #WebSecurity #TechNews #OWLBlog
Firefox Expands Fingerprint Protections
https://blog.mozilla.org/en/firefox/fingerprinting-protections/
#HackerNews #Firefox #Fingerprint #Protections #Privacy #WebSecurity #Mozilla
Jan :rust: :ferris:
and 1 other
boosted
We're creating a new series of articles about Authentication.
Our first new guide is about classic passwords -- the original method to authenticate and still the most common on the web. A refresher about password attacks, defenses and best practices:
https://developer.mozilla.org/en-US/docs/Web/Security/Authentication/Passwords
Thank you @chrisdavidmills for your review and feedback on this one!
We're creating a new series of articles about Authentication.
Our first new guide is about classic passwords -- the original method to authenticate and still the most common on the web. A refresher about password attacks, defenses and best practices:
https://developer.mozilla.org/en-US/docs/Web/Security/Authentication/Passwords
Thank you @chrisdavidmills for your review and feedback on this one!
alcinnz
boosted
Brash: Chromium Browser DoS Attack via document.title Exploitation
Brash is a critical vulnerability in Blink, the rendering engine that powers Google's Chromium-based browsers. It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed.
#chromium #webbrowser #dosattack #blink #attack #dos #websecurity #brash #web #poc #documenttitle #websecurity #itsec #itsecurity #browser #google
Brash: Chromium Browser DoS Attack via document.title Exploitation
Brash is a critical vulnerability in Blink, the rendering engine that powers Google's Chromium-based browsers. It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed.
#chromium #webbrowser #dosattack #blink #attack #dos #websecurity #brash #web #poc #documenttitle #websecurity #itsec #itsecurity #browser #google
»Crash, Boom, Bang—Offene Sicherheitslücke lässt fast alle aktuellen Browser abstürzen:
Das Problem betrifft sämtliche Chromium-basierten Browser und zeigt damit, wie weit die Monokultur in diesem Bereich vorangeschritten ist«
Vorher hatte ich oben den original Link getootet. Hier noch ein deutscher Artikel erklärend darüber.
#chromium #webbrowser #dosattack #blink #attack #dos #websecurity #brash #web #poc #documenttitle #websecurity #itsec #browser #google #chrome
Brash: Chromium Browser DoS Attack via document.title Exploitation
Brash is a critical vulnerability in Blink, the rendering engine that powers Google's Chromium-based browsers. It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations are managed.
#chromium #webbrowser #dosattack #blink #attack #dos #websecurity #brash #web #poc #documenttitle #websecurity #itsec #itsecurity #browser #google
Daniel Appelquist
boosted
We've written a new guide on Supply Chain Attacks:
https://developer.mozilla.org/en-US/docs/Web/Security/Attacks/Supply_chain_attacks
Many thanks to the W3C SWAG CG and @ljharb for the reviews and feedback! #websecurity
We've written a new guide on Supply Chain Attacks:
https://developer.mozilla.org/en-US/docs/Web/Security/Attacks/Supply_chain_attacks
Many thanks to the W3C SWAG CG and @ljharb for the reviews and feedback! #websecurity
just small circles 🕊
boosted
Important work happening around HTTP Signatures in the Fediverse. Stronger key validation, better digest handling, clearer test vectors—all steps toward more secure and trustworthy ActivityPub communication.
HTTP Signature Upgrades Coming Soon
https://activitypub.blog/2025/07/03/http-signature-upgrades-coming-soon/
#Fediverse#CyberSecurity#ActivityPub#DigitalIdentity#HTTPsignatures#Decentralisation#WebSecurity
Important work happening around HTTP Signatures in the Fediverse. Stronger key validation, better digest handling, clearer test vectors—all steps toward more secure and trustworthy ActivityPub communication.
HTTP Signature Upgrades Coming Soon
https://activitypub.blog/2025/07/03/http-signature-upgrades-coming-soon/
#Fediverse#CyberSecurity#ActivityPub#DigitalIdentity#HTTPsignatures#Decentralisation#WebSecurity