No one is safe. All 4 browser was easily hacked in Pwn2Own 2015.

[D M C]

So. in 2015 Pwn2Own hacking event.
All four browser was easily went down in few minutes.
1)IE
2)Google Chrome
3)Firefox
4)Safari

The final cracked bug count came to:

5 bugs in the Windows operating system
4 bugs in Internet Explorer 11
3 bugs in Mozilla Firefox
3 bugs in Adobe Reader
3 bugs in Adobe Flash
2 bugs in Apple Safari
1 bug in Google Chrome

I guess nothing is safe neither Windows nor Mac..

Source: Pwn2Own 2015: The year every web browser went down | ZDNet

 

[Pete]

As always, safe browsing habits are the best defence....

 

[D M C]

As always, safe browsing habits are the best defence....

Safe browsing habit...... like ?

 

[TheLumaniac]

Safe browsing habit...... like ?

Like not going to suspicious websites, not clicking to suspicious ads and pop-ups and not downloading stuff that could be dangerous/you don't know what they do/you found them on a suspicious website...

 

[D M C]

Like not going to suspicious websites, not clicking to suspicious ads and pop-ups and not downloading stuff that could be dangerous/you don't know what they do/you found them on a suspicious website...

Opening websites in private or incognito mode is safer than normal or not?

 

[TheLumaniac]

Opening websites in private or incognito mode is safer than normal or not?

Correct me if I am wrong, but using some sort of private mode simply stops the browser from keeping a browsing history. Knowing that you visited a potentially dangerous website does not make actually visiting it any safer.
On the other hand, using an adblocker could actually help a little by blocking ads that could lead to potentially dangerous websites or make you download suspicious files...

 

[Blacklac]

Depends if it has a "sandbox mode" or not, I guess?

 

[D M C]

Correct me if I am wrong, but using some sort of private mode simply stops the browser from keeping a browsing history. Knowing that you visited a potentially dangerous website does not make actually visiting it any safer.
On the other hand, using an adblocker could actually help a little by blocking ads that could lead to potentially dangerous websites or make you download suspicious files...

I thought private mode do not save temp files, history and cookies in your PC which may be some sort of safe browsing or something like that.

 

[TheLumaniac]

I thought private mode do not save temp files, history and cookies in your PC which may be some sort of safe browsing or something like that.

Depends on what you consider safe. You can still download stuff while you are in private mode and your internet provider knows that you are using the internet at the moment. Someone who will use your computer right after you will not know what you did because your browser did not keep any temp files cookies, etc. So, for example, your brother who also uses your computer wouldn't know what sites you visited (if you know what I mean), so you are, in a way, safe.

 

[TechFreak1]

I thought private mode do not save temp files, history and cookies in your PC which may be some sort of safe browsing or something like that.

Also private mode doesn't prevent storage of so called "flash cookies", I use the better privacy add-on on Firefox to remove these. However they are persistent little blighters.

https://en.wikipedia.org/wiki/Local_shared_object

 

[nTrud3r]

Correct me if I am wrong, but using some sort of private mode simply stops the browser from keeping a browsing history. Knowing that you visited a potentially dangerous website does not make actually visiting it any safer.
On the other hand, using an adblocker could actually help a little by blocking ads that could lead to potentially dangerous websites or make you download suspicious files...

Yeah. Your employer and your ISP can still see your browsing history, even in a private mode.
Safe browsing habits never hurt, get an internet security program, when visiting banking sites make sure they have the https:// prefix and don't visit suspicious websites.

 

[bobbob1016]

Not sure, what about Vivaldi or Opera? Does PaleMoon count? Could also do Dolphin or alike with BlueStacks. I also don't run as admin, disable javascript, and installed ghostery.

 

[FearL0rd]

So. in 2015 Pwn2Own hacking event.
All four browser was easily went down in few minutes.
1)IE
2)Google Chrome
3)Firefox
4)Safari

The final cracked bug count came to:

5 bugs in the Windows operating system
4 bugs in Internet Explorer 11
3 bugs in Mozilla Firefox
3 bugs in Adobe Reader
3 bugs in Adobe Flash
2 bugs in Apple Safari
1 bug in Google Chrome

I guess nothing is safe neither Windows nor Mac..

Source: Pwn2Own 2015: The year every web browser went down | ZDNet

Nobody was able to hack with EMET on https://technet.microsoft.com/en-us/security/jj653751

EMET 5.1 is available - Security Research & Defense - Site Home - TechNet Blogs

I recommend the fist thing when you load Windows install EMET

EMET Security Mitigations	Included
Attack Surface Reduction (ASR) Mitigation
Export Address Table Filtering (EAF+) Security Mitigation
Data Execution Prevention (DEP) Security Mitigation
Structured Execution Handling Overwrite Protection (SEHOP) Security Mitigation
NullPage Security Mitigation
Heapspray Allocation Security Mitigation
Export Address Table Filtering (EAF) Security Mitigation
Mandatory Address Space Layout Randomization (ASLR) Security Mitigation
Bottom Up ASLR Security Mitigation
Load Library Check – Return Oriented Programming (ROP) Security Mitigation
Memory Protection Check – Return Oriented Programming (ROP) Security Mitigation
Caller Checks – Return Oriented Programming (ROP) Security Mitigation*
Simulate Execution Flow – Return Oriented Programming (ROP) Security Mitigation*
Stack Pivot – Return Oriented Programming (ROP) Security Mitigation

 

[Polychrome]

As always, safe browsing habits are the best defence....

Yep yep yep.

Funniest thing I've ever seen working tech jobs...a Mac in which Firefox was opening itself and displaying ads. There is no "safe" browser that protects you from all the bad on the internet.

 

[D M C]

Nobody was able to hack with EMET on https://technet.microsoft.com/en-us/security/jj653751

EMET 5.1 is available - Security Research & Defense - Site Home - TechNet Blogs

I recommend the fist thing when you load Windows install EMET

EMET Security Mitigations	Included
Attack Surface Reduction (ASR) Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Export Address Table Filtering (EAF+) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Data Execution Prevention (DEP) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Structured Execution Handling Overwrite Protection (SEHOP) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
NullPage Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Heapspray Allocation Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Export Address Table Filtering (EAF) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Mandatory Address Space Layout Randomization (ASLR) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Bottom Up ASLR Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Load Library Check – Return Oriented Programming (ROP) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Memory Protection Check – Return Oriented Programming (ROP) Security Mitigation	https://i-technet.sec.s-msft.com/jj653751.right.png
Caller Checks – Return Oriented Programming (ROP) Security Mitigation*	https://i-technet.sec.s-msft.com/jj653751.right.png
Simulate Execution Flow – Return Oriented Programming (ROP) Security Mitigation*	https://i-technet.sec.s-msft.com/jj653751.right.png
Stack Pivot – Return Oriented Programming (ROP) Security Mitigation

But this year it was hacked in just 17 seconds.

No Browser is safe : Chrome, Firefox, Internet Explorer, Safari all hacked at Pwn2Own contest

 

[furkanavshar]

Use Maxthon Cloud Browser. Stay safe. Stay fast. Stay light.