As if you didn't have enough to worry about, with the stock market crashing and all your savings going south . . . U.S. CERT issued a warning about a new browser exploit called "clickjacking". Worst of all, it even affects Linux browsers. Yikes! Jeremiah Grossman, founder and CTO of WhiteHat Security, U.S. CERT said, "Clickjacking gives an attacker the ability to trick a user into clicking on something only barely or momentarily noticeable. Therefore, if a user clicks on a Web page, they may actually be clicking on content from another page."
All modern browsers are affected (Internet Explorer, Safari, Firefox, Google Chrome, Opera) and no no fix is available. Sweet! You can, however, mitigate the risks by disabling scripting and plug-ins in your browser. Thereby making the whole point of modern browsers ancient history, or at least pretty much moot. To which I must reply, HOLY PENGUIN GUANO!
Firefox users can, if they want, take the Nyah nyah nyah ground with the NoScript Firefox extension. FlashBlock, Adblock Plus, and CustomizeGoogle are also good. Of course, doing all those things pretty much renders the point of modern browsers moot. Did I mention HOLY PENGUIN GUANO!?
Special Reports: DevOps
Have projects in development that need help? Have a great development operation in place that can ALWAYS be better? Regardless of where you are in your DevOps process, Linux Journal can help!
With deep focus on Collaborative Development, Continuous Testing and Release & Deployment, we offer here the DEFINITIVE DevOps for Dummies, a mobile Application Development Primer, advice & help from the experts, plus a host of other books, videos, podcasts and more. All free with a quick, one-time registration. Start browsing now...
- The Ubuntu Conspiracy
- A First Look at IBM's New Linux Servers
- Vigilante Malware
- Disney's Linux Light Bulbs (Not a "Luxo Jr." Reboot)
- Libreboot on an X60, Part I: the Setup
- System Status as SMS Text Messages
- Vagrant Simplified
- Dealing with Boundary Issues
- Bluetooth Hacks
- Non-Linux FOSS: Code Your Way To Victory!