27
February
2026
Firefox has launched a major update to bolster defenses against Cross-Site Scripting (XSS) attacks, one of the web’s most persistent threats. Released on February 26, 2026, Firefox 148 introduces the standardized Sanitizer API, the first browser to ship this built-in tool natively. This innovation empowers developers to sanitize untrusted HTML effortlessly, addressing a decade-long pain […]
24
February
2026
Google has rolled out an emergency security update for its Chrome browser, addressing three high-severity vulnerabilities that could expose users to serious risks. This patch targets Windows, Mac, and Linux platforms, fixing flaws that threaten system security and user data. The quick rollout reflects the constant pressure on browser makers to counter advanced threats like […]
9
February
2026
Discovered during holiday tinkering, this issue (CVE-2026-25916) affects versions before 1.5.13 and 1.6.13. In a sneaky bypass of email security features, a vulnerability in Roundcube Webmail exposes users to hidden tracking even when “Block remote images” is enabled. Attackers can now confirm if you’ve opened their emails, logging your IP address and browser details without […]