Application security, Security
December 21, 2023
Via: The RegisterMozilla last week revised its position on a web security technology called Trusted Types, which it has decided to implement in its Firefox browser. By so doing, the browser biz will help reduce a longstanding form of web attack that […]
Threats & Malware, Virus & Malware
October 4, 2023
Via: SecurityWeekCybersecurity journalist Brian Krebs reported last week that a website where the Snatch ransomware group names victims had been leaking data, including visitor IPs and information on internal operations. According to Krebs, the leaked data suggests that the Snatch cybercrime […]
Application security, Security
July 10, 2023
Via: The Hacker NewsMozilla has announced that some add-ons may be blocked from running on certain sites as part of a new feature called Quarantined Domains. “We have introduced a new back-end feature to only allow some extensions monitored by Mozilla to run […]
Threats & Malware, Vulnerabilities
March 7, 2022
Via: Help Net SecurityMozilla has released an out-of-band security update for Firefox, Firefox Focus, and Thunderbird, fixing two critical vulnerabilities (CVE-2022-26485, CVE-2022-26486) exploited by attackers in the wild. About the vulnerabilities (CVE-2022-26485, CVE-2022-26486) The two patched zero-days are both memory corruption bugs of […]
October 6, 2021
Via: Security WeekStarting with Firefox 93, the browser blocks insecure HTTP downloads on encrypted (HTTPS) pages, to keep users safe from potentially unwanted or even malicious downloads. Given that data transmitted over HTTP isn’t protected, attackers able to intercept that data could […]
Application security, Security
September 22, 2021
Via: Help Net SecurityIn a recent Mozilla review of the privacy features of 21 popular video call apps, only two were singled out for outstanding features (Signal and Threema). Meanwhile, three products were slapped with a dreaded “*Privacy Not Included” warning label (Facebook […]
Threats & Malware, Vulnerabilities
February 9, 2021
Via: Security WeekIn its advisory for the vulnerability — the bug currently does not have a CVE identifier — Mozilla described it as a “buffer overflow in depth pitch calculations for compressed textures.” The issue, reported by researchers Abraruddin Khan and Omair […]
Threats & Malware, Vulnerabilities
November 11, 2020
Via: Security WeekThe Firefox vulnerability, tracked as CVE-2020-26950, has been described as an issue related to write side effects in MCallGetProperty opcode not being accounted for. “In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an exploitable […]
Cyber-crime, Malware, Phishing
September 21, 2020
Via: Security WeekFirefox Send, the browser maker reveals, is being discontinued because it has been abused for delivering malware and phishing attacks. The feature was designed for encrypted file sharing and became popular among a loyal set of users, Mozilla says. However, […]
Application security, Security
April 28, 2020
Via: Security WeekWith the current COVID-19 pandemic forcing many to work from home, organizations have adopted video calling as a means to keep teams connected and ensure collaboration and efficiency. Almost immediately, these applications started facing scrutiny, as both individual users and […]
Threats & Malware, Vulnerabilities
April 24, 2020
Via: Security AffairsMozilla announced some major changes to its bug bounty program that was first launched in 2004. The organization paid out $965,750 for roughly 350 vulnerabilities, the average payout for each issue was approximately $2,700. Now Mozilla has increased the maximum […]
Threats & Malware, Vulnerabilities
January 27, 2020
Via: Security AffairsOver the past two weeks, Mozilla has reviewed and banned 197 Firefox add-ons because they were executing malicious code. The malicious Firefox add-ons were found stealing user data and for this reason, they were removed from the Mozilla Add-on (AMO) […]
Application security, Security, Threats & Malware, Vulnerabilities
January 9, 2020
Via: Help Net SecurityMozilla has patched a Firefox zero-day vulnerability (CVE-2019-17026) that is being exploited in attacks in the wild and is urging Firefox and Firefox ESR users to update their installations as soon as possible. About CVE-2019-17026 A day after Mozilla released […]
October 23, 2019
Via: Help Net SecurityMozilla has released Firefox 70.0, which delivers performance and power consumption improvements, helpful browser features, new options for developers and, most prominently, new security and privacy protections. Privacy protections In January 2019, Mozilla published its official anti-tracking policy, which singled […]
September 6, 2019
Via: Security WeekMozilla this week released Firefox 69 in the stable channel with patches for 20 vulnerabilities, including one code execution bug rated Critical severity. The issue resides in the fact that, when Firefox is launched by another program, logging-related command line […]
Mobile, Network security, Privacy protection
September 4, 2019
Via: Help Net SecurityIt took a lot of testing and tweaking, but Mozilla’s Firefox browser is finally being delivered with Enhanced Tracking Protection and a web-based cryptomining blocking feature on by default. The changes “Enhanced Tracking Protection works behind-the-scenes to keep a company […]
Threats & Malware, Vulnerabilities
June 19, 2019
Via: Help Net SecurityA critical Firefox zero-day remote code execution vulnerability is being abused in targeted attacks in the wild, Mozilla has warned on Tuesday. About the vulnerability (CVE-2019-11707) Mozilla did not share many details about the flaw – it simply stated that […]
June 11, 2019
Via: Threat PostMozilla Corporation is launching a premium version of the Firefox browser that will tout improved security features such as virtual private network and secure cloud storage, according to CEO Chris Beard. In a Friday interview with German media publication T3N, […]
June 6, 2019
Via: Threat PostBrowsers Firefox and Chrome received updates this week, both adding security and privacy tools that help with password management and help block sites that track users. Mozilla’s Firefox browser introduced an “Enhanced Tracking Protection” feature that blocks over 1,000 third-party […]
Threats & Malware, Vulnerabilities
May 7, 2019
Via: Threat PostThanks to Mozilla letting an intermediate signing certificate expire, the Tor community was thrown into disarray over the weekend when the NoScript security add-on was suddenly killed for both Firefox and the Tor browser. A fix is available for Firefox, […]