PRTODAY / NewswireToday Free press release distribution service network

Written by / Agency / Source: NeonDrum Ltd

Check Ads Availability|e-mail Article


Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Security Flaws in New WebGL Technology Put PCs and Data At Risk Finds Context Information Security - Research by Context Information Security shows design level security issues, which give potentially malicious web pages low level access to graphics cards that could provide a ‘back door’ for hackers and compromise data stored
Security Flaws in New WebGL Technology Put PCs and Data At Risk Finds Context Information Security

 

NewswireToday - /newswire/ - London, United Kingdom, 2011/05/09 - Research by Context Information Security shows design level security issues, which give potentially malicious web pages low level access to graphics cards that could provide a ‘back door’ for hackers and compromise data stored.

   
 
Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security/Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


 

Researchers at Context Information Security, an international security consultancy, have uncovered serious security flaws in the new WebGL technology that creates 3D graphics in a browser with the same speed and detail as hardware-accelerated PC games and applications. Context says that design level security issues give potentially malicious web pages low level access to graphics cards that could provide a ‘back door’ for hackers and compromise data stored on internet-connected machines.

WebGL is currently supported on Linux, OSX and Windows operating systems, using Firefox 4, Safari and Google Chrome browsers. In addition to desktops and notebooks, WebGL is also being adopted for use in other devices including smart phones and is rapidly increasing in popularity.

“The risks stem from the fact that most graphics cards and drivers have not been written with security in mind so that the interface (API) they expose assumes that the applications are trusted,” says Michael Jordon, Research and Development Manager at Context. “While this may be true for local applications, the use of WebGL-enabled browser-based applications with certain graphics cards now poses serious threats from breaking the cross domain security principle to denial of service attacks, potentially leading to full exploitation of a user’s machine.”

“We think it is important to raise awareness of this issue before WebGL becomes more widely adopted because this is not an implementation problem, but is down largely to the WebGL specification, which is inherently insecure,” adds Jordon. “In the short term, individual end users or IT departments can avoid potential problems by simply disabling WebGL within their browsers; but the only long term solution is for the developers of WebGL itself to ensure that the specification is designed and tested to prevent these types of risks.”

WebGL 1.0 was officially released in March this year by The Khronos Group, a non-profit consortium of companies including Google, Apple, Intel and Mozilla working to create open standard APIs to display digital interactive media across all platforms and devices. It is essentially a graphics library that extends the functionality of JavaScript to allow it to create interactive 3D graphics within a browser without using plug-ins.

For more information on the security implications of the emerging WebGL technology, Context has today (9 May 2011) published a blog detailing the design level security issues within WebGL along with some examples of proof of concepts.

About Context
Context Information Security is an independent security consultancy specialising in both technical security and information assurance services. Founded in 1998, the company’s client base has grown steadily based on the value of its product-agnostic, holistic approach and tailored services combined with the independence, integrity and technical skills of its consultants.
The company’s client base now includes some of the most prestigious blue chip companies in the world, as well as government organisations. As best security experts need to bring a broad portfolio of skills to the job, Context staff offer extensive business experience as well as technical expertise to deliver effective and practical solutions, advice and support. Context reports always communicate findings and recommendations in plain terms at a business level as well as in the form of an in-depth technical report.

Issued by: Context Information Security, T: + 44 (0)20 7537 7515,

For more information for editors, please contact :
Peter Rennison / Allie Andrews
PRPR, T: + 44 (0)1442 245030 / 07831 208109

Distributed by NeonDrum.com news distribution service on behalf of PRPR.

 
 
Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security/Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


 

Written by / Agency / Source: NeonDrum Ltd

 
 

Availability: All Regions (Including Int'l)

 

Traffic Booster: [/] Quick Newswire Today Visibility Checker

 

Distribution / Indexing: [+]

 
 
# # #
 
IT Security Anti-Spam Computer Security - Purchase keywords tags antivirus software firewall spyware removal virus scan computer security IT Security Anti-Spam malware / Banner Ads!.

 
  Your Banner Ad showing on ALL
IT Security/Anti-Spam articles,
CATCH Visitors via Your Competitors Announcements!


Security Flaws in New WebGL Technology Put PCs and Data At Risk Finds Context Information Security

Company website links NOT available to basic submissions
It is OK to republish and/or LINK any newswire for any legitimate media purpose as long as you name Newswire Today and LINK as the source.
 
  Is this your article?
Activate ALL web links and social stream by Upgrading to Press Release PREMIUM Plan Now!

|
Publisher Contact: Liz Hartney - NeonDrum.com 
+44 7510 518732 news[.]neondrum.com
 
Newswire Today - PRZOOM / PRTODAY disclaims any content contained in this article. If you need/wish to contact the company who published the current release, you will need to contact them - NOT us. Issuers of articles are solely responsible for the accuracy of their content. Our complete disclaimer appears here.
IMPORTANT INFORMATION: Issuance, publication or distribution of this press release in certain jurisdictions could be subject to restrictions. The recipient of this press release is responsible for using this press release and the information herein in accordance with the applicable rules and regulations in the particular jurisdiction. This press release does not constitute an offer or an offering to acquire or subscribe for any NeonDrum Ltd securities in any jurisdiction including any other companies listed or named in this release.

IT Security/Anti-Spam via RSSAdd NewswireToday - PRZOOM Headline News to FeedBurner
Find who RetweetFollow @NewswireTODAY



Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!


Read Latest Articles From NeonDrum Ltd / Company Profile


Read IT Security/Anti-Spam Most Recent Related Newswires:

NEC Technology Enables Ink Dots to Become Identification Tags
Sonus Becomes First SIP-Centric Security Vendor to Join Fortinet’s Fabric-Ready Partner Program
Radware Powers TierPoint’s Best-In-Class DDoS Mitigation Service
Radware and Nokia Partner to Provide Best-In-class DDoS Attack Detection and Mitigation
Flexera & Microsoft Join Forces to Increase Software Supply Chain Transparency & Strengthen Customer Relationships
NEC to Provide Lisbon with Smart City Infrastructure for Integrated Management of the Entire City
Ensono Achieves AWS Microsoft Workloads Competency Status
NEC Provides Facial Recognition System to South Wales Police in the UK
NEC Joins Hyperledger to Advance Blockchain Technology
NEC Receives Frost & Sullivan's 2017 Asia Pacific Integrated Biometrics Solutions for Public Safety Leadership Award
Comodo and e-Safer Certificate Division TrustCert Partner to Expand Cybersecurity Solutions in Brazil
Verint Receives 2017 Vendor of the Year Award from Frost & Sullivan Asia Pacific
Convergence of Blockchain with Emerging Technologies Set to Disrupt the Healthcare Industry by 2025 Finds Frost & Sullivan
NEC Accelerates Machine Learning for Vector Computers
NEC Provides Facial Recognition At the Seoul Sky Observatory in Lotte World Tower

Boost Your Social Network
& Crowdfunding Campaigns


LIFETIME SOCIAL MEDIA WALL
NewswireToday Celebrates 10 Years in Business


PREMIUM Members


Visit  JobsWare.com

Visit  Rapid Recovery





 
  ©2017 Newswire Today — Limelon Advertising, Co.
Home | About | Advertise/Pricing | Contact | Investors | Privacy/TOS | Sitemap | FRANCAIS
newswire, PR press releases distribution service magazines engine news alert newsroom press room breaking news public relations articles company news alerts newswiredistribution ezine bizentrepreneur biznewstoday digital business report market search pr firms agencies reports distri-bution today investor relation successful internet entrepreneurs newswire distribution prtoday.com freenewswiredistribution asianewstoday bizwiretoday USA pr UK today - NOT affiliated with PRNewswire as we declined their partnership offer in 2013
 
PRTODAY & NewswireTODAY are NOT affiliated with USA TODAY (usatoday.com)