Tor: 'Request English versions of web pages for enhanced privacy' keeps previous (grayed out) settings

The vulnerability allowed an attacker to identify users who had changed their language settings in the Tor Browser. By exploiting JavaScript and HTTP fingerprinting techniques, the attacker could determine the user's language preferences, even if the user had enabled the "Request English versions...

RIG malvertising campaign uses cryptocurrency theme as decoy

For a couple of weeks, we have been observing a malvertising campaign that uses decoy websites to redirect users to the RIG exploit kit. Those sites, whose theme is about cryptocurrencies, were all registered recently and are swapped after a few days of use. The initial redirection starts off fro...

Brave Browser JS fingerprinting blocking component access control error vulnerability

Brave Browser is a web browser from Brave Software.JS fingerprinting blocking component is one of the "fingerprinting" blocking components of the browser. An access control vulnerability exists in the JS fingerprinting blocking component of Brave Browser version 0.19.73 and earlier. An attacker...