“Google has patched a bug in the Chrome browser on Android, which allowed an attacker to spoof a user into thinking they’re accessing one website when they’re actually visiting another,” Zack Whittaker reports for ZDNet.
“Rapid7, which detailed the flaw, said users should contact carriers or handset makers to ensure they received the patch,” Whittaker reports. “But bad news for Apple, which now has to scramble to fix a similar flaw found in its Safari browser.”
MacDailyNews Take: One big difference: When Apple corrects the issue, iOS users will actually get the update en masse. “Contact carriers or handset makers?” Puleeze. What a bad joke Android is.
“A proof-of-concept exploit was published Sunday that allows an attacker spoof the address bar in Safari on iPhones, iPads, and Macs,” Whittaker reports. “The exploit is far from perfect, as the browser can visibly be seen fighting the code to try to display the correct address.”
Full article here.