Critical Firefox 0-Day Under Active Attacks

Posted by & filed under Security Alerts.

If you are using Firefox as your web browsing software on your Windows, Linux, or Mac systems you should immediately update your free and open-source Firefox web browser to the latest version available on Mozilla’s website. Why the urgency? Mozilla earlier today released Firefox 72.0.1 and Firefox ESR 68.4.1 versions to patch a critical zero-day vulnerability in its browsing… Read more »

17-Year-Old Weakness in Firefox Let HTML File Steal Other Files From Device

Posted by & filed under Security Alerts.

Except for phishing and scams, downloading an HTML attachment and opening it locally on your browser was never considered as a severe threat until a security researcher today demonstrated a technique that could allow attackers to steal files stored on a victim’s computer. Barak Tawily, an application security researcher, shared his findings , where he successfully… Read more »

Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

Posted by & filed under Security News.

Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages before it reaches the web… Read more »