fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Google Chrome 88 Released: RIP Flash Player And FTP Support

Google Chrome 88 Released: RIP Flash Player And FTP Support

Google has released Chrome 88 today, January 19th, 2021, to the Stable desktop channel, and it includes security improvements and the long-awaited removal of Adobe Flash Player.

Chrome 88 is now promoted to the Stable channel, Chrome 89 is the new Beta version, and Chrome 90 will be the Canary version.

Windows, Mac, and Linux desktop users can upgrade to Chrome 88 by going to Settings -> Help -> About Google Chrome. The browser will then automatically check for the new update and install it when available.

Flash Player removed from Chrome

To coordinate with Adobe Flash Player reaching the end of life on January 12th, 2021, Google has completely removed Flash from the browser.

With this change, it will no longer be possible for organizations to use Enterprise policy to enable Flash Player again in Google Chrome.

Google has been warning users since 2017 of Adobe Flash Player’s removal and has been advising the enterprise to migrate away from using Flash in their environment.

With this change, the largest platform used to run Flash content has officially closed its doors to Flash Player.

Also Read: Limiting Location Data Exposure: 8 Best Practices

FTP support removed

Google has removed FTP support (ftp://) from Chrome due to its low use and lack of support for encrypted (FTPS) or proxy connections.

Since 2014, Google has wanted to remove support for the FTP protocol in Chrome as it was determined to only be used by “.1-.2%” of the browser’s users.

With the release of Chrome 80, Google began deprecating FTP support with the addition of a new “chrome://flags/#enable-ftp” flag that controls whether FTP support is enabled or not. 

The initial goal was to disable FTP support by default in Chrome 81, but on April 9th, Google enabled it again to make sure there was no problem accessing content on FTP sites during the pandemic.

“In light of the current crisis, we are going to “undeprecate” FTP on the Chrome stable channel. I.e. FTP will start working again,” Google software engineer Asanka Herath posted to a Chromium bug topic.

With the release of Chrome 88, all FTP support has been removed from the browser.

Improved dark mode controls

While Google Chrome has supported an operating system’s dark mode settings for some time, it has not entirely synched all of its controls to use a dark mode theme. These controls include scroll bars and form controls.

With Chrome 88, the browser will now display scroll bars and form controls using a dark mode theme.

Improved security against tabnabbing attacks

With the release of Chrome 88, when a user clicks on a link that opens in a new tab, the browser will automatically apply the ‘noopener’ context to the link to prevent ‘tabnabbing’ attacks. Google references this attack method as ‘tab-napping.’

Tabnabbing is a security issue that allows a newly opened page to utilize javascript to redirect the original referring page to a different URL. This redirected URL can be anything the threat actor wants, including phishing pages or pages that automatically download malicious files.

Web developers can add a rel=”noopener” attribute to HTML links to prevent a new tab from using JavaScript to redirect the referring page.

With today’s release, Google Chrome will automatically apply the rel=”nooopener” attribute to all links that open in a new tab.

New Tab search experiment

Chrome 88 brings a highly awaited feature that allows you to search through all of your open tabs. When enabled, you will see a small down arrow in a circle, that when clicked, will open a search dialog, as shown below.

Chrome 88 Tab Search feature
Chrome 88 Tab Search feature

This feature is being tested as an experiment in Chrome 88 and can be enabled in chrome://flags under the chrome://flags/#enable-tab-search flag.

Tab Search Chrome flag
Tab Search Chrome flag

Developer changes in Chrome 88

This release brings numerous new APIs, trials, and changes to Google Chrome. Below we have listed the main developer changes:

  • Digital Goods API for in-app purchases from web applications.
  • AbortSignal in addEventListener()
  • CSS aspect-ratio Property
  • CSS Selectors 4: Complex :not()
  • Don’t Clear adoptedStyleSheets on Adoption to/from
  • ElementInternals.shadowRoot Attribute
  • Make Type Optional in WakeLock.request()
  • Origin Isolation
  • path() Support in clip-path CSS Property
  • Permissions-Policy Header
  • RTCRtpTransceiver.stop()
  • Shared Array Buffers, Atomics, and Futex APIs in JavaScript
  • New Origin Trials

For more details, be sure to check out the Chrome 88 developer changes blog post.

Also Read: 10 Practical Benefits of Managed IT Services

Chrome security fixes

Chrome 88’s security fixes have not been published yet.  We will update this section when they become available.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us