Just recently, we heard of the news about the leakage of around 6.5 million LinkedIn passwords. Still so much security issues in the web. Good thing that it was immediately remedied.
The issue of security bothers us a lot especially if we are just browsing. Malwares and viruses are just on the lookout and ready to jump in to our computer's system.
Search query hacking
According to Google's latest report in the security section of their blog, everyday 12 to 14 million queries show warning to caution the user from sites that are compromised.
As reported by USA Today, one research from Blue Coat Security Lab states that those who attack consumers are four times more active when attacking search results as compared to sending spammy/ phishing links through email.
There are actually two types of site warnings – compromised and harmful.
“This site may be compromised.” These are the sites that may have been hacked, wherein their contents were already changed and these are aimed at phishing and tricking the other users to provide some of their personal info (e.g. credit card number, etc.).
“This site may harm your computer.” For sites that have been detected by the system to have some malwares.
Basically, just make sure that you enter the sites with the above warnings in your own risk.
Built in security and some extensions
According to their online security blog, Google detects and finds around 9,500 new malicious web sites everyday. This is part of the whole security that the company has been doing that involves not just Chrome but other browsers as well - Firefox and Safari.
Google claims that its system protects 600 million users from malwares and other forms of online attacks. This protection also covers those who download stuff, which numbers to 300,000 per day in Chrome.
Phishers still normally attack sites that involves lots of credit card info or the online commerce sites. But lately they have been evolving and turning their attacks to non-commerce sites.
These modern phishers have three distinct characteristics – faster, globally expanding, and becoming more of malware distributors - as outlined by Google's security page.
They are faster because the web pages that are used for phishing only remains online for less than an hour to avoid detection.
The attackers attack companies, banks, and merchants and are expanding and based in the different parts of the globe already, as shown in Google online security's map.
Also, phishing sites are already being used to distribute malwares. Usually, these are the ones that look like popular sites, and usually provide downloads and lure people to get these.
Extensions may be risky
We normally download stuff from sites that we think are safe. Sometimes we cannot avoid high risk activities while browsing the web. Our last line of defense are some extensions in our web browsers. There are actually a lot to choose from depending on the browser that you are using.
However, there are actually security issues and risks to users when they are using some extensions.
According to a study that was conducted by experts from the University of California in Berkeley, upon performing a security review of 100 Chrome extensions, a total of 70 vulnerabilities were discovered across 40 extensions.
And they have one suggestion here – banning HTTP scripts would prevent 47 of the 50 vulnerabilities. And this will only have modest impacts on developers.
There are lots of risks when we are browsing. Still the best that we can do is to make sure that we are always cautious of the sites that we are opening and of the stuff that we download, may it be a free software or a game. And if there's a warning from Google, better be cautious in opening sites.
You might also want to read Mobile Devices Users Everywhere Are Realizing the Implications of Their Lax Security and 5 Predicted Cyber Security Trends for 2014.