17-Year-Old Weakness in Firefox Let HTML File Steal Other Files From Device

Posted by & filed under Security Alerts.

Except for phishing and scams, downloading an HTML attachment and opening it locally on your browser was never considered as a severe threat until a security researcher today demonstrated a technique that could allow attackers to steal files stored on a victim’s computer. Barak Tawily, an application security researcher, shared his findings , where he successfully… Read more »

Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

Posted by & filed under Security News.

Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages before it reaches the web… Read more »