Latest Cookie news

Google Chrome reduced cookie requests to improve performance

Google shared details on a recently introduced Chrome feature that changes how cookies are requested, with early tests showing increased performance across all platforms.
- Mayank Parmar
- June 05, 2024
- 06:20 PM
- 0
New Chrome feature aims to stop hackers from using stolen cookies

Google announced a new Chrome security feature called 'Device Bound Session Credentials' that ties cookies to a specific device, blocking hackers from stealing and using them to hijack users' accounts.
- Sergiu Gatlan
- April 02, 2024
- 02:08 PM
- 7
PayPal files patent for new method to detect stolen cookies

PayPal has filed a patent application for a novel method that can identify when "super-cookie" is stolen, which could improve the cookie-based authentication mechanism and limit account takeover attacks.
- Bill Toulas
- February 25, 2024
- 11:02 AM
- 3
Malware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accounts

Multiple information-stealing malware families are abusing an undocumented Google OAuth endpoint named "MultiLogin" to restore expired authentication cookies and log into users' accounts, even if an account's password was reset.
- Bill Toulas
- December 29, 2023
- 11:13 AM
- 5
Thousands of Apache Superset servers exposed to RCE attacks

Apache Superset is vulnerable to authentication bypass and remote code execution at default configurations, allowing attackers to potentially access and modify data, harvest credentials, and execute commands.
- Bill Toulas
- April 26, 2023
- 11:52 AM
- 0
CircleCI's hack caused by malware stealing engineer's 2FA-backed session

Hackers breached CircleCi in December after an engineer became infected with information-stealing malware that stole the employee's 2FA-backed SSO session, allowing access to the company's internal systems.
- Lawrence Abrams
- January 14, 2023
- 05:28 PM
- 0
GitHub's new privacy policy sparks backlash over tracking cookies

Developers are furious at GitHub's upcoming privacy policy changes that would allow GitHub to place tracking cookies on some of its subdomains. The Microsoft subsidiary announced this month, it would be adding "non-essential cookies" on some marketing web pages starting in September, and offered a 30-day "comment period."
- Ax Sharma
- August 11, 2022
- 03:45 AM
- 3
Clever phishing method bypasses MFA using Microsoft WebView2 apps

A clever, new phishing technique uses Microsoft Edge WebView2 applications to steal victim's authentication cookies, allowing threat actors to bypass multi-factor authentication when logging into stolen accounts.
- Lawrence Abrams
- June 26, 2022
- 10:12 AM
- 3
Firefox now blocks cross-site tracking by default for all users

Mozilla says that starting today, all Firefox users will now be protected by default against cross-site tracking while browsing the Internet.
- Sergiu Gatlan
- June 14, 2022
- 11:04 AM
- 1
Firefox Focus now blocks cross-site tracking on Android devices

Mozilla's Firefox Focus web browser can now protect Android users against cross-site tracking while browsing the Internet by preventing cookies from being used for advertising and monitoring your activity.
- Sergiu Gatlan
- January 11, 2022
- 03:42 PM
- 0
Google: YouTubers’ accounts hijacked with cookie-stealing malware

Google says YouTube creators have been targeted with password-stealing malware in phishing attacks coordinated by financially motivated threat actors since at least late 2019.
- Sergiu Gatlan
- October 20, 2021
- 11:49 AM
- 0
Firefox adds enhanced cookie clearing, HTTPS by default in private browsing

Mozilla says that, starting in Firefox 91 released today, users will be able to fully erase the browser history for all visited websites which prevents privacy violations due to "sneaky third-party cookies sticking around."
- Sergiu Gatlan
- August 10, 2021
- 09:54 AM
- 2
FlyTrap malware hijacks thousands of Facebook accounts

A new Android threat that researchers call FlyTrap has been hijacking Facebook accounts of users in more than 140 countries by stealing session cookies.
- Ionut Ilascu
- August 09, 2021
- 05:43 PM
- 3
DuckDuckGo's new email privacy service forwards tracker-free messages

DuckDuckGo is rolling out an email privacy feature that strips incoming messages of trackers that can help profile you for better profiling and ad targeting.
- Ionut Ilascu
- July 20, 2021
- 03:03 PM
- 2
Firefox now blocks cross-site tracking by default in private browsing

Mozilla says that Firefox users will be protected against cross-site tracking automatically while browsing the Internet in Private Browsing mode.
- Sergiu Gatlan
- June 01, 2021
- 11:00 AM
- 0
GitHub disables Google FLoC user tracking on its website

GitHub has announced rolling out a mysterious HTTP header on all GitHub Pages sites to block Google FLoC tracking.
- Ax Sharma
- April 28, 2021
- 01:25 AM
- 4
Vivaldi, Brave, DuckDuckGo reject Google's FLoC ad tracking tech

Makers of Vivaldi and Brave web browsers have rejected Google's new privacy-preserving proposal called FLoC, which is meant to replace third-party tracking cookies across websites on browsers, including Chrome.
- Ax Sharma
- April 14, 2021
- 11:59 AM
- 2
Firefox 86 gets a privacy boost with Total Cookie Protection

Mozilla Firefox 86 was released today with Total Cookie Protection, a new privacy feature that prevents web trackers from keeping tabs on your activity while browsing the web.
- Sergiu Gatlan
- February 23, 2021
- 10:12 AM
- 5
Firefox 85 adds supercookie protection, removes Flash support

Mozilla Firefox 85 was released today with supercookie protection to block hidden trackers from tracking Firefox users' activity while browsing the Internet.
- Sergiu Gatlan
- January 26, 2021
- 11:02 AM
- 0
Google Chrome 82 to Enhance Privacy via New Cookie Settings

Google is making progress on expanding the control users have over cookies in the Chrome browser with a new flag in Canary that enables an improved interface with more buttons and information.
- Ionut Ilascu
- March 16, 2020
- 04:29 PM
- 0