Remember Hewlett-Packard's Pwn2Own event? It's a convention where the smartest good-guy hackers in the world come together to expose security flaws in a wide variety of products.
The last one was in November, and the subject was smartphones. One phone was left standing after hackers tried their best to figure out ways to break into every phone brand on the market.
Another Pwn2Own event just ended, and this time the focus was on Internet browsers. Hackers discovered flaws in every Internet browser during the Pwn2Own event.
The only company that's actually patched one of them so far, however, is Mozilla Firefox. eWeek has the story:
Mozilla released Firefox 36.0.3 on March 20, with the intention of providing fixes for the security issues that were first disclosed at Pwn2Own 2013. However, Mozilla quickly discovered that one of the fixes was not complete and released Firefox 36.0.4 on March 21 providing an update. The updated fix in Firefox 36.0.4 is for a vulnerability identified as CVE-2015-0818, which is a same origin-bypass issue that was demonstrated by researcher Mariusz Mylnski on March 18.
To find out how to get these helpful updates, then jump over to my guide for keeping your Web browser up-to-date.