New browser attack lets hackers run bad code even after users leave a web page

ZDNet ^ | February 25, 2019 | By Catalin Campanu

[ShadowAce]

Since it is open source it sounds like it is time to utilize this and build a version that is truly safe and not part of or hooked to Mozilla dependencies.

Just use Lynx.

[Jumper]

This is something released into the wild from some country’s cyber warfare toolbox. Wikileaks has many of the CIA toolbox’s from Snowden’s treasonous activities.

[Openurmind]

Here’s what you do... Set it to clear all cookies at shutdown but go into the “trusted sites” option and add just the sites you trust like FR. Then you have the option to clear all cache except your “trusted sites”. And most browsers will also let you remember the just the passwords but clear everything else back to scratch.

[Openurmind]

I actually use Lynx quite a bit. But it is an absolute shame we have to go backwards in technology and rely on a text browser to be safer from this crap.

[ShadowAce]

I actually use Lynx quite a bit.

heh--I only use lynx for one application--I wrote a script that uses it in order to maintain my ping list.

[Openurmind]

I have found that sometimes it will lay out a page stack that’s behind a paywall so that I can still read the article text without the splash screen over it. lol :)

[Future Useless Eater]

With firefox, I entered   about:config   then searched for "serviceworker". It listed 11 preference items.

One of them was...

dom.serviceworkers.enabled   TRUE

So I plan to toggle that to FALSE and let the chips fly. Hopefully only sh*t webpage code will be negatively affected.

if necessary, messing with the other ten preferences might also be a good idea.

[dfwgator]

[ImJustAnotherOkie]

It’s a Greek thing, a little Windex can fix anything. Laugh much?

[sparklite2]

I googled serviceworkers and it is script related, but it seems to do a lot of stuff. Think I’ll leave it for now.

[Tunehead54]

I’ve had a few instances going here and there on the net where a pop-up says pay or we’ll do this or that.

Each time I just leaned on the laptop power button to just shut down the PC and the powered up again with no ill effects.

Only thing is on restart Netscape opens up all the previous tabs 50% of the time without asking if I just want a single browser window. The “oops” message.

I’d like the choice of two statups - clean & one tab or restore all tabs ... sigh.

[Pete from Shawnee Mission]

Thanks Swordmaker!
Have one of those Browsers!

(How was the cruise?)

[GOPJ]

The key to avoiding the worst of this is regularly quitting your browsers and starting them up from scratch.

Thanks Swordmaker

[dayglored]

Browser vulnerability, all platforms ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

Thanks to Swordmaker for the ping!

[Bob434]

you probably know this, but if you get to a site that won’t let you leave, with linux, you can click “CTRL+ALT+K” (or whatever key you set up in options in linux) to kill open programs- you’ll have to click inside the program to kill it but it shuts it down immediately- the process is called “XKill”

[Bob434]

you probably know this, but if you get to a site that won’t let you leave, with linux, you can click “CTRL+ALT+K” (or whatever key you set up in options in linux) to kill open programs- you’ll have to click inside the program to kill it but it shuts it down immediately- the process is called “XKill”

[Swordmaker]

How was the cruise?

It was great. Going to Alaska in the inside passage in June for my birthday then to Nova Scotia in October on another Kenda Cruise out of New York.

[Carriage Hill]

Thanks for that advice.

[Openurmind]

“Netscape “

Did I just lose 20 years here? Lol Just teasing... There has got be a setting in there. :)

But you are right, I have hit sites and immediately said oh no!, and hit the power off before it could go any further. “dump it all right now” is the time proven manual analog firewall.

[Openurmind]

Thank you Bob... :)