6 Bug found in the mobile browser, threat of 'address bar spoofing' attack

6 Bug found in the mobile browser, threat of 'address bar spoofing' attack


Cyber ​​security researchers have found bugs (address bar spoofing) in six popular mobile browsers, including Safari and Opera.


Address bar spoofing vulnerabilities have affected these mobile browsers and opened the door for malware delivery, phishing and malicious activity, the researchers said.




The security vulnerabilities found in some browsers have been resolved and some are still problematic.



The bug was discovered by Rapid Seven and independent Pakistani researcher Rafi Baloch. The six different browsers include Apple Safari, Opera Touch / Mini, Yandex, Bolt, RITS and UC Browser.



They point out that these browsers allow cyber attackers to present fake webpage addresses.



Users use such browsers for all kinds of applications needed in daily life.


UC Web and Ballet Browser have already patched the bug, while Opera is expected to fix the bug by November 12.



The attackers were found to be using executable Melesius JavaScript code. This bug is said to allow hackers to interfere when the page loads and when the browser refreshes the address bar.


This bug gives hackers the ability to move forward, even weakening browser protection. In this case, it is mentioned that a popup will appear from any website or the content of the website will appear in your browser Windows.

Comments