Jump to content
News 247

  • ADS

  • ADS

  • ADS

  • ADS

  • Gaming

    Our website News
    1. September 2024
    2. KOTAKU
      Rumors surrounding Nintendo’s successor to its wildly successful Switch hybrid console continue heating up, with this week bringing us images that allegedly leak the appearance of the Switch 2. In other Nintendo news, the Mario maker, along with The Pokémon Company, are suing Palworld developer Pocketpair on the…
      Read more...
      Source Link
    3. Author
      One of the feature that separates the Arc browser from its competitors is the ability to customize websites. The feature called "Boosts" allows users to change a website's background color, switch to a font they like or one that makes it easier for them to read and even remove an unwanted elements from the page completely. Their alterations aren't supposed to be be visible to anyone else, but they can share them across devices. Now, Arc's creator, the Browser Company, has admitted that a security researcher found a serious flaw that would've allowed attackers to use Boosts to compromise their targets' systems. 
      The company used Firebase, which the security researcher known as "xyzeva" described as a "database-as-a-backend service" in their post about the vulnerability, to support several Arc features. For Boosts, in particular, it's used to share and sync customizations across devices. In xyzeva's post, they showed how the browser relies on a creator's identification (creatorID) to load Boosts on a device. They also shared how someone could change that element to their target's identification tag and assign that target Boosts that they had created. 
      If a bad actor makes a Boost with a malicious payload, for instance, they can just change their creatorID to the creatorID of their intended target. When the intended victim then visits the website on Arc, they could unknowingly download the hacker's malware. And as the researcher explained, it's pretty easy to get user IDs for the browser. A user who refer someone to Arc will share their ID to the recipient, and if they also created an account from a referral, the person who sent it will also get their ID. Users can also share their Boosts with others, and Arc has a page with public Boosts that contain the creatorIDs of the people who made them. 
      In its post, the Browser Company said xyzeva notified it about the security issue on August 25 and that it issued a fix a day later with the researcher's help. It also assured users that nobody got to exploit the vulnerability, no user was affected. The company has also implemented several security measures to prevent a similar situation, including moving off Firebase, disabling Javascript on synced Boosts by default, establishing a bug bounty program and hiring a new senior security engineer.
      This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/the-arc-browser-that-lets-you-customize-websites-had-a-serious-vulnerability-133053134.html?src=rssSource Link
    4. KOTAKU
      Welcome to the weekend, puzzlers! There’s a rugged Connections waiting for you today—each group has one word that, when taken with the one word from another group, could easily form its own group. But they don’t, so you’d be wrong. (Like we were, darn it.) Maybe you’ll need some wake-me-up background music to get you…
      Read more...
      Source Link
    5. KOTAKU
      Gravitational Missile is a Sorcery you can find in Elden Ring’s Shadow of the Erdtree expansion. Why would you want to? Because this spell is a visual treat that uses gravity to keep enemies pulled in, while dealing damage to them. Any Intelligence build with a focus on gravity magic will definitely want to add this…
      Read more...
      Source Link
    6. Author
      The Twitch leadership team has taken to the stage at TwitchCon San Diego to reveal all the changes coming to the platform
      The post TwitchCon Updates: Enhanced Broadcasting, Transparent Strikes, and Shared Chat appeared first on Insider Gaming.
      Source Link
    7. Author
      YouTube has terminated Ironmouse's main YouTube channel following a shutdown that impacted her VOD profile. Check out the full story here.
      The post YouTube Has Terminated Ironmouse’s Main Channel, Prompting a Legal Battle appeared first on Insider Gaming.
      Source Link
    8. Author
      A compelling and thrilling new game mode is set to join The Texas Chainsaw Massacre, helping to expand the world of Texas Chainsaw in a new way. The new game mode, Rush Week, features six sorority girls trying to survive against Johnny Slaughter. A new trailer was also released for the mode. It is a 1v6 mode with new mechanics. These include new ways for the killer to find the girls and for…
      Source
      Source Link
    9. STEAM

      [STEAM]SteamOS 3.6.14 Beta: Less Lucky

      By STEAM, in Gaming News,

      Note: This update is for the Steam Deck Beta and Preview channels, and includes new features that are still being tested. You can opt into this in Settings > System > System Update Channel.

      GeneralSecurity fix for Flatpak (CVE-2024-42472) Developer
      Fixed nested desktop crashing on launch Source Link
    10. Author
      Preorder: Frieren: Beyond Journey's End - Part 1
      $47.24 (was $70)
      Preorder at Crunchyroll
      2024 has been a great year for anime, and if you're looking to dive into one of the best shows of the year, preorders are now live for Frieren: Beyond Journey's End Part 1 on Blu-ray. This release contains part one of the critically acclaimed fantasy anime's first season. It's set to launch on December 17 and is currently available for $47.24 (was $70) at Crunchyroll.
      Preorder: Frieren: Beyond Journey's End - Part 1
      $47.24 (was $70)
      The Blu-ray release collects the first 16 episodes of Frieren: Beyond Journey's End season one, plus a few special features like clean credit sequences, promotional videos, and more. It also includes a set of art cards featuring several of the characters from the main cast.
      Preorder at Crunchyroll Adapted from an original manga series, the anime follows the titular Frieren, a powerful elf who has lived for over 1,000 years. By the time the show begins, she has just completed a 10-year-long quest to defeat the Demon King, alongside the heroes Himmel, Eisen, and Heiter. Because of her long life, a decade is nothing more than a brief moment in time for Frieren, and as the decades pass, Frieren slowly begins to understand human mortality and the connections she forges along the way. The result is an incredibly emotional series that hits you right in the feels, and with famed animation studio Madhouse bringing everything to life, Frieren looks magical.
      Continue Reading at GameSpotSource Link
    11. Author

      Kien Review (GBA)

      By Author, in Gaming News,

      KIEN is a game that must have had one of the longest development cycles of any game I can remember. It was originally designed and created by a team of first-time developers in south Italy in around 2001. The original team couldn’t find a publisher in 2001. This passionate team of young artists and coders were essentially not that experienced and while the game has potential as the combat…
      Source
      Source Link

  • ADS

Important Information

Cookie Consent & Terms We use cookies to enhance your experience on our site. By continuing to browse our website, you agree to our use of cookies as outlined in our We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.. Please review our Terms of Use, Privacy Policy, and Guidelines for more information.