It has been a coarse Black Hat conference for Google. First, FusionX used the company’s homepage to pry into a number of SCADA systems, and now, a couple of experts have discovered the way to hack into Chrome OS . In line with WhiteHat security researchers Matt Johansen and Kyle Osborn, one major issue is Google’s vet-free app approval process, which leaves its Chrome Web Store vulnerable to malicious extensions. But there also are vulnerabilities within native extensions, like ScratchPad — a note-taking extension that stores data in Google Docs. Using a cross-site scripting injection, Johansen and Osborn were ready to steal a user’s contacts and cookies, which may give hackers access to other accounts, including Gmail. Big G quickly patched the opening after WhiteHat uncovered it earlier this year, but researchers told Black Hat’s attendees that they have got discovered similar vulnerabilities in other extensions, besides. In a press release, a Google spokesperson said, “This conversation is set the net, not Chrome OS. Chromebooks raise security protections on computing hardware to new levels.” The corporate went directly to say that its laptops can push back attacks better than most, due to “a delicately designed extensions model and the advanced security available through Chrome that many users and experts have embraced.”
Roku remote for iOS updated, easier navigation features in tow
Hack enables fast refresh mode on Nook Simple Touch (video)
