Recent Blog Posts
-
Mapping Company Raises Millions
Nov 20 20094:09 pm EDT -
Facebook Valuations Are All Over the Map
Nov 20 200911:30 am EDT -
The Future of Tech, 2010 Edition
Nov 20 20099:13 am EDT -
Automatic Pancake-Making Machine Attracts $2 Million in Capital
Nov 19 20094:53 pm EDT -
Apple Talk of Microsoft's Annual Meeting
Nov 19 20091:27 pm EDT -
There Is Still Hope for the News Business
Nov 19 200911:50 am EDT -
The Google Phone May Be Near
Nov 18 20094:10 pm EDT -
Amazon Grocery Service Goes Mobile with iPhone
Nov 18 20099:13 am EDT -
How Microsoft Blew It in Mobile
Nov 17 20093:55 pm EDT -
Ten Reasons Why Startups Fail
Nov 17 20092:18 pm EDT
Links
- Engadget

- Pandora

- GigaOM

- USA TODAY Tech

- Todd Bishop's Microsoft Blog

- Somewhat Frank's tech conference list

- BuzzTracker Tech

- The Long Tail

- Tom Foremski

- Roger McGuinn's Folk Den

- John Battelle's SearchBlog

- Mark Cuban's blog

- SciTech Daily

- Romenesko

- Kevin Maney's site

- Steven Johnson

- Marc Andreessen

- TechCrunch

- Fred Wilson

- paidContent

- Spiedies, mmmm

Chrome Security Flaws Emerge
Sam Gustin says: With all the hype surrounding Google's Chrome browser, it's probably safe to assume that hackers began probing it the moment it was launched.
Now, nearly one week later, Chrome's security vulnerabilities are beginning to emerge.
Perhaps the most serious allows malicious hackers to take over a user's PC to launch remote attacks, according to Bach Khoa, a Vietnamese cyber-security firm.
Calling its discovery "the first critical Chrome vulnerability," the firm described a "boundary error" that occurs when using the browser's "Save As" function to capture a "malicious" Web page.
"To exploit the vulnerability, a hacker might construct a specially crafted Web page, which contains malicious code. He then tricks users into visiting his website and convinces them to save this page. Right after that, the code would be executed, giving him the privilege to make use of the affected system," Back Khoa wrote on its blog.
Google has released a patch addressing the vulnerability, the firm said.
The "Save As" flaw comes after the emergence of an earlier Chrome vulnerability, demonstrated by researcher Aviv Raff, which showed as hackers could plant malware on unsuspecting users' desktops.
This probably isn't the last of the Chrome security flaws to emerge -- the browser is in beta, after all -- but you can rest assured that Google is monitoring the situation closely. The last thing the company wants is for Chrome to gain a reputation for being susceptible to viruses and malware.
Laura Rich is a co-founder of Recessionwire, which provides news, advice, perspective and humor about the recession and the recovery.






