SUBSCRIBE
Tech Journal Now
  • Home
  • News
  • AI
  • Reviews
  • Guides
  • Best Buy
  • Software
  • Games
Reading: Google patches Chrome vulnerability used for account takeover and MFA bypass
Share
Tech Journal NowTech Journal Now
Font ResizerAa
  • News
  • Reviews
  • Guides
  • AI
  • Best Buy
  • Games
  • Software
Search
  • Home
  • News
  • AI
  • Reviews
  • Guides
  • Best Buy
  • Software
  • Games
Have an existing account? Sign In
Follow US
© Foxiz News Network. Ruby Design Company. All Rights Reserved.
Tech Journal Now > Software > Google patches Chrome vulnerability used for account takeover and MFA bypass
Software

Google patches Chrome vulnerability used for account takeover and MFA bypass

News Room
Last updated: May 15, 2025 9:06 pm
News Room
Share
1 Min Read
SHARE

“Unlike other browsers, Chrome resolves the Link header on subresource requests. But what’s the problem? The issue is that the Link header can set a referrer-policy. We can specify unsafe-url and capture the full query parameters,” he wrote.

Link headers are used by websites to tell a browser about important page resources, for example, images, that it should preload. As part of the HTTP response that happens before the browser encounters any HTML, this accelerates response times. When the browser goes hunting for the resource, usually on a third-party server, it transmits a URL containing information about the requesting site, as allowed by the referrer-policy.

Unfortunately, in Chrome this URL can also include information with a bearing on security, such as OAuth flows used for authentication.

Read the full article here

You Might Also Like

the key to high-performing IT teams – Computerworld

That ‘One Big Beautiful Bill’ ties genAI deregulation to broadband funding – Computerworld

Why you should ditch the degree to succeed in IT – Computerworld

A clever new way to create instant reminders on Android – Computerworld

How to get started – Computerworld

Share This Article
Facebook Twitter Email Print
Leave a comment Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

- Advertisement -
Ad image

Trending Stories

News

Next-gen battery materials manufacturer Group14 lays off workers in Washington state

July 2, 2025
Games

The PC game releases we’re most excited about in July

July 2, 2025
Games

A new WoW event boosts ultra-rare item drop rates tenfold, which admittedly isn’t a huge difference when the starting number is 0.5%

July 1, 2025
Games

Death Stranding 2 is too damn easy

July 1, 2025
Games

Destiny 2 just got weird: Launch trailer leans hard into time travel and looks more like a Control crossover

July 1, 2025
AI

Apple reaches out to OpenAI, Anthropic to build out Siri technology – Computerworld

July 1, 2025

Always Stay Up to Date

Subscribe to our newsletter to get our newest articles instantly!

Follow US on Social Media

Facebook Youtube Steam Twitch Unity

2024 © Prices.com LLC. All Rights Reserved.

Tech Journal Now

Quick Links

  • Privacy Policy
  • Terms of use
  • For Advertisers
  • Contact
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?