Firefox

Firefox users can now ‘isolate their Facebook identity’ from the rest of the web

Firefox’s Facebook Container add-on makes it harder for Facebook to track your web activity via third-party cookies.


1 min read

bitdefender.com

Security hole meant Grammarly would fix your typos, but let snoopers read your private writings

A Google vulnerability researcher has found a gaping security hole in a popular web browser extension, that could have potentially exposed your private writings on the internet.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security podcast #058: Face ID, Firefox, and Windows SNAFUs, plus Bitcoin FOMO

Is Face ID racist? Has Mr Robot infected your Firefox browser? Has Microsoft pushed a buggy password manager onto your Windows PC?

All this and much much more is discussed in the special first birthday edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by original co-host Vanja Švajcer.


2 min read

PornHub visitors hit with malware attack via poisoned ads

Poisoned ads served up by the X-rated adult PornHub site tricked users into installing malicious browser updates.


50 sec read

bitdefender.com

At last! Firefox puts another nail in Flash’s coffin

There has been another welcome step along the road to Adobe Flash’s funeral, with the release this week of a new version of the Firefox browser.

Read more in my article on the Hot for Security blog.


0 sec read

How to clear the cache, cookies, and browsing history in Firefox

David Bisson explains how Firefox users can clear their caches, browsing history, and cookies for better privacy.


1 min read

Chrome, Firefox, and Opera users vulnerable to Unicode domain phishing attacks

Attackers can evade a security mechanism and abuse Unicode domains to phish for the login credentials of Chrome, Firefox, and Opera users.

David Bisson reports.


2 min read

Firefox 52 warns when you try to enter passwords on non-encrypted websites

Mozilla patches 28 security vulnerabilities and protects users from entering their sensitive information on insecure webpages.


1 min read

Firefox flags Web of Trust add-on as suspicious, blocks by default

Firefox blocks WOT completely, in an attempt to protect users against malicious activity.

David Bisson reports.


1 min read

Tor users at risk of having their anonymity stripped via attacks exploiting Firefox zero-day

Attackers are currently exploiting a zero-day vulnerability in the Firefox web browser to strip anonymity from privacy-loving Tor users.

David Bisson reports.


1 min read

tripwire.com

Mozilla asks court to force FBI into revealing potential Firefox zero-day vulnerability

The FBI collected the IP and MAC addresses of visitors to a child sexual abuse website. But how did they do it? Mozilla wants to know – but the FBI wants to keep details of the flaw it exploited secret.

Read more in my article on the Tripwire State of Security blog.


0 sec read

bitdefender.com

Login form on your non-HTTPS webpage? Firefox will display a warning

Do you run a website that asks your users to login to their account? If so, do you request those login credentials over HTTP rather than HTTPS?

Oh dear…

Read more in my article on the Hot for Security blog.


0 sec read

All versions of Firefox are blocking Flash by default. No-one cries

Block will be removed when Adobe releases a version of Flash which is no longer being actively exploited.

Sorry about that…


30 sec read

Adobe Flash zero day vulnerability exploited by hackers to infect IE and Firefox users

Adobe has warned that online criminals are attacking Internet Explorer and Firefox users via an as-yet-unpatched zero day vulnerability in Adobe Flash.

Do you know how to enable Click to Play in your browser to protect yourself?


49 sec read

Running Adobe Flash? You need to read this today

Two critical security vulnerabilities, being actively exploited by online criminals, have been discovered in Adobe Flash.

There has been a patch released for one of them, but not the other one…


1 min read

Google blocking all bit.ly links as malicious [now fixed]

Hopefully this is a false alarm.

Let’s hope it gets fixed soon, because boy oh boy it’s going to be inconvenient.


27 sec read