Thursday , October 1 2020
Breaking News

Mozilla says a new Firefox security bug is under active attack – TechCrunch, TechCrunch


MozillaHas warned Firefox users to update their browser to the latest version after security researchers found a vulnerability that hackers were actively exploiting in “targeted attacks” against users.

The vulnerability, found by Chinese security company Qihoo (******************************, was found in Firefox’s just-in-time compiler. The compiler is tasked withspeeding up performanceof JavaScript to make websites load faster. But researchers found that the bug could allow malicious JavaScript to run outside of the browser on the host computer.

In practical terms, that means an attacker can quietly break into a victim’s computer by tricking the victim into accessing a website running malicious JavaScript code.

But Qihoo did not say precisely how the bug was exploited, who the attackers were, or who was targeted.

Browser vulnerabilities are a hot commodity in security circles as they can be used to infect vulnerable computers – often silently and without the user noticing – and be used to deliver malware or ransomware. Browsers are also a target for nation states and governments and their use of surveillance tools, known as network investigative techniques – or NITs. These vulnerability-exploiting tools have been used by federal agents to spy on andcatch criminals. But these tools have drawn ire from the security community because the feds ’failure to disclose the bugs to the software makers could result in bad actors exploiting the same vulnerabilities for malicious purposes.

Mozillaissued the security advisoryfor Firefox, which had only been out for two days before the vulnerability was found.

Homeland Security’s cyber advisory unit, the Cybersecurity and Infrastructure Security Agency, also issueda security warning, advising users to update to Firefox (********************************. 0.1, which fixes the vulnerability. Little information was given about the bug, only that it could be used to “take control of an affected system.”

Firefox users can update their browser from the settings.

**************Read More**************Brave Browser

About support_2ab8

Check Also

Covid: Adults without A-levels to be offered free college courses – BBC News, BBC News

Covid: Adults without A-levels to be offered free college courses – BBC News, BBC News

Image copyright Getty Images Adults in England without an A-level or equivalent qualification will be offered a fully funded college course, the government has announced.The offer will be available from April and applies to courses offering "skills valued by employers".In a speech on Tuesday, the PM will say the government cannot "save every job" amid…

Leave a Reply

Your email address will not be published. Required fields are marked *