Google researchers point to a resurgence in a decades-old session hijacking tactic, as seen in a recent phishing campaign.
Read about Google’s SameSite update, which changes how the Chrome web browser handles third-party cookies for improved security.
Google and Mozilla have released multiple versions of their web browsers over the past few days to roll back certain features and to fix high-severity vulnerabilities.
Starting in March 2020, all the major web browsers—Firefox, Chrome, Safari, and Edge—will display warnings when users visit websites that only support Transport Layer Security (TLS) versions 1.0 or 1.1. Users will be unable to visit those sites.
A proposal that would standardize the format of SMS messages being used in two-factor authentication schemes has a simple goal: make users relying on those one-time passcodes less susceptible to phishing attacks.