There's a new JavaScript-based attack in town that will change your router's DNS settings through a mobile website and a visiting smartphone.

Five researchers from the Vrije University in the Netherlands have put together an attack that can be carried out via JavaScript code and break ASLR protection on at least 22 processor micro ...

Security researchers have found a way to use JavaScript to map a home or corporate network and attack connected servers or devices, such as printers or routers. The malicious JavaScript can be ...

CloudFlare reports a massive JavaScript-based DDoS attack against one its customers, likely carried out by unsuspecting mobile browsers served a malicious ad.

A security researcher has developed a technique that enables him to use javascript and timing attacks to steal browser data.

A team of academics has created a Chrome extension that can block side-channel attacks that use JavaScript code to leak data from a computer's RAM or CPU.

Called "JavaScript Template Attack," this new technique revolves around the concept of JavaScript properties and the default values that browser engines return for basic JavaScript queries seeking ...

Researchers have devised a new attack that can bypass address space layout randomization (ASLR) in browsers and possibly other applications.

The researchers went on to combine their AnC JavaScript with attack code that exploits CVE-2013-0753, a now-patched use-after-free vulnerability in Firefox. Normally, ASLR protections in the 64 ...

The new Rowhammer exploit doesn't just target hardware -- it uses Javascript to do it, and can run within a web browser.