Many of the attacks we receive in our day to day come through the browser. They are very varied and can steal our data, passwords, infect the system, damage the performance of the computer … In short, put our security and privacy at risk. In this article we echo the latest addition to Google Chrome, which in its new version will protect against NAT Slipstreaming attacks , which target TCP / UDP ports.
Chrome will prevent NAT Slipstreaming attacks
As we know, the Google browser is the most used today. It has users on all types of platforms and operating systems. This means that when an important change arises, an improvement in our security, it can benefit many in the network. In this case, it is a change that will make Chrome the first browser to protect against NAT Slipstreaming attacks.
We recently saw that NAT Slipstreaming attacks had appeared. This is a new technique that allows an attacker to bypass the firmware and thus be able to remotely access any TCP / UDP service on the victim’s computer. What it does is open any TCP / UDP port and access the computer. Also avoid port-based restrictions in the browser.
Now Google Chrome 87 , which has just been launched, is going to bring protection against this type of attack. In addition to including some interesting improvements, as is often the case in new versions, it will also add this protection and thus becomes the first browser to have it.
As we have explained, this technique, called NAT Slipstreaming , allows attackers to bypass firewalls and establish connections to internal networks by tricking users into accessing malicious sites, turning Chrome into a proxy for attackers. Now Chrome 87 becomes the first browser to prevent NAT Slipstreaming attacks by blocking access to ports 5060 and 5061, which the attack uses to bypass firewalls and network address translation (NAT) schemes. We also saw recently what port scan attacks are.
Other browsers also work on this protection
It should be noted that other browsers such as Safari or Mozilla Firefox also work to avoid this problem in future versions. The objective is none other than to protect the safety of users as much as possible.
We already know that having the latest versions is essential to prevent attacks. There are many occasions when we can run into vulnerabilities that affect all types of devices and systems. We must always have all the patches available to correct these failures.
In the case of the browser this becomes even more important. After all, it is the main tool we use to connect to the Internet. It is used to enter pages of all kinds, log into services and platforms and, ultimately, it is where we enter our personal data.
All this means that we must always take precautions when using these types of tools and that they are always updated correctly. You can see an article where we talk about browser hijacking and how to avoid it.