This week we are starting an experiment that enables V8's Virtual Memory Cage in Chrome on Desktop (currently only on Dev + Canary channels, then Beta and finally Stable). Here is how that'll work:
Finally, here is the blog for the prototype pollution research we did.
"A tale of making internet pollution free"
- Exploiting Client-Side Prototype Pollution in the wild
https://t.co/jsShZGlgKB
Ever wondered how people find browser sandbox escapes? Wonder no more, because this blog post explains how to find, debug and invoke IPC messages.
From JavaScript.
Using @FirefoxDevTools.
https://t.co/9072BqJEIw
Success! Team Viettel wasted no time in executing their local EoP on #Windows 10. They head off to the disclosure room to dish the details. #Pwn2Own#P2O
We have enabled Warp, a significant update to SpiderMonkey, by default in @Firefox 83. 🕸️
SpiderMonkey is the JavaScript engine used in the Firefox web browser. 🌐
@jandemooij explains how Warp works and how it made SpiderMonkey faster. https://t.co/02Zq4mc16e