Browsers and extensions

Mozilla has released Firefox 2.0.0.4 and Firefox 1.5.0.12 to address six security vulnerabilities. Most users will automatically receive this update and be asked to restart Firefox to install it. This update will probably be the final one for Firefox 1.5. As such, Mozilla provides an easy upgrade path for current 1.5 users to upgrade to 2.0. All Firefox users are urged to install this update, as it addresses the following security issues CVE-2007-2871 (XUL Popup Spoofing); CVE-2007-2870 (XSS using addEventListener); CVE-2007-1362 (Path Abuse in Cookies) CVE-2007-2869 (Persistent Autocomplete Denial of Service) … Read more

Mozilla enjoys a large development community to build add-ons for its Firefox browser. Now it seems all that development might not be a good thing. A security researcher in Indiana has found that the process used to update some of these add-ons automatically appears to be flawed, allowing criminal hackers to intercept the browser's call to the developer to see if there's a new version available. Worse, the most vulnerable add-ons aren't from vendors you've never heard of; they include brand-name sites like Google, Yahoo, Facebook, and LinkedIn.

Extensions for Firefox contain hard-coded Internet addresses for … Read more

On Tuesday, Microsoft began releasing photographic 3D renderings of landmarks in New York and a few other cities via its Live Search Maps site.

In November, the company released Virtual Earth 3D in beta, along with the API and a software developer kit for people who wanted to create 3D renderings for Live Search Maps. At the time, people could also view 3D terrain and some three-dimensional buildings in a few cities. The release of New York in virtual 3D marks the first major effort by Microsoft to create an almost complete rendering of a recognizable city.

Microsoft's attempt … Read more

Google's purchase of GreenBorder Technologies--a browser virtualization software company that creates a sandboxed environment for your existing Firefox or Internet Explorer browse--follows on the heels of Google announcing a blog from its nascent antimalware team. With rumors of a possible forthcoming antivirus acquisition, the Mountain View search giant has jumped into the Internet security business feet first.

Nerves must be raw at traditional security vendors Symantec and McAfee. Last year Microsoft announced its own security suite, Microsoft Windows Live Onecare, and proceeded to capture a lion's share of sales in the Internet security suite space. Now Google … Read more

In the rapidly changing world of computer technology, the laptop Power Downloader purchased only a couple of years ago has quickly become obsolete. In order to keep up with the most advanced Internet criminals, Power decided that it was time to upgrade his trusty laptop. Once he found the right one with the fastest processor, extra RAM, and the latest features, he brought it back to the Power Lair for the most important part of the process: downloading software!

While it seems like his computer goes out of date rather quickly, Power Downloader's favorite programs for a new computer … Read more

Budget travelers will snap up cheap airfares the instant a price drops, even knowing they'll have to squeeze into a fetal position on cramped, red-eye flights with lengthy layovers. Hopefully, a novel new travel assistant could help you be more discriminating.

Unlike Farecast (read more), which predicts fare fluctuations to help plan before you buy, Yapta also follows the costs of flights you've already purchased so you can take advantage of an air-travel secret.

Many air carriers will refund some of the difference if, say, the $1,000 Barcelona round-trip you booked in March now costs only $350. … Read more

Although Power Downloader spends a considerable amount of time in the field chasing down bad guys, part of his job is not quite so glamorous. For all the time traveling around the globe, he still ends up putting more time into research on the Web, hoping he'll find the leads he needs to capture sneaky criminals. To make the job of Web research a little less tedious, Power listens to his favorite music.

To help him stay focused on the research at hand while listening to music, Power Downloader uses FoxyTunes. With this Firefox extension installed, Power can switch … Read more

Ten percent of the 4.5 million URLs Google researchers analyzed for a malware expos? harbored malicious code. The code executes through widgets, ads, compromised downloads, server vulnerabilities, browser holes, phishing lures, and links, making infection possible for even ordinarily safe users.

CNET.com's Robert Vamosi has the full story, and CNET Download.com has programs to add muscle to your antivirus armor. Netcraft Toolbar (for Internet Explorer and Firefox), is an antiphishing browser extension that sniffs out suspicious hosting locations common in spoofed sites.… Read more

This week in the Rafe & Tom Real Deal podcast: Silverlight. Real Deal fans sent some interesting and technical questions about the platform ahead of time, which Tom had good answers for. Check out the podcast here:

>>> Listen now <<<

Next Tuesday, we'll be discussing live streaming, and of course, we'll live-stream the recording session, at 3 p.m. Pacific Time next Tuesday. More details to come.

If you want to join the discussion ahead of time, head on over to the Real Deal forums or post a question here.