A day after we published an article on how deficient most developers are when it comes to properly planning for security we are hearing about a new bug that infects one of the core components of an operating system. Dubbed Bash or Shellshock this new flaw affects the shell in an OS. The shell in an OS is what allows you to interact with systems. When you run an application it will often run code through the shell to give you the desired result.
After taking a pretty big hit from the HeartBleed bug OpenSSL I back in the new for an additional six bugs that put user data at risk. Security researchers have discovered a number of additional bugs in OpenSSl that can be used to allow malicious persons to spy on communication. Fortunately for the masses (about two thirds of internet sites use OpenSSL) these new bugs are not as easy to exploit as Heartbleed was.
In keeping with our recent focus on security we have some bad news for users of Google’s Chrome Web Browser. It would seem that the way Chrome caches web pages to deliver performance also exposes that information to malicious individuals. Security researchers at Identity Finders confirmed something that we have suspected since the launch of the browser many years ago. Chromes cache stores user information including names, email and mailing addresses, credit card, bank account phone and even social security numbers if entered into the browser.
In the realm of throwing things at the wall to see if something sticks we can add RockStar games. RockStar games has been trying anything to fix the massive number of problems that have plagued the launch of their GTA Online game. The issues have gotten so bad that many are on the verge of simply walking away. After we reported about the continuing issue with the loss of progress in the game we received multiple reports of people losing high level characters even when the game engines were reporting as online. This is not a minor issue and it certainly is one that RockStar needs to fix.