Microsoft on Thursday took the wraps off an ongoing campaign impacting popular web browsers that stealthily injects malware-infested ads into search results to earn money via affiliate advertising. "Adrozek," as it's called by the Microsoft 365 Defender Research Team, employs an "expansive, dynamic attacker infrastructure" consisting of 159 unique domains, each of which hosts … [Read more...] about Watch Out! Adrozek Malware Hijacking Chrome, Firefox, Edge, Yandex Browsers
Firefox
Windows 10, iOS, Chrome, Firefox and Others Hacked at Tianfu Cup Competition
Multiple software products from Adobe, Apple, Google, Microsoft, Mozilla, and Samsung were successfully pwned with previously unseen exploits in Tianfu Cup 2020, the third edition of the international cybersecurity contest held in the city of Chengdu, China. "Many mature and hard targets have been pwned on this year's contest," the event organizers said. "11 out of 16 targets … [Read more...] about Windows 10, iOS, Chrome, Firefox and Others Hacked at Tianfu Cup Competition
A Bug Could Let Attackers Hijack Firefox for Android via Wi-Fi Network
Dear Android users, if you use the Firefox web browser on your smartphones, make sure it has been updated to version 80 or the latest available version on the Google Play Store. ESET security researcher Lukas Stefanko yesterday tweeted an alert demonstrating the exploitation of a recently disclosed high-risk remote command execution vulnerability affecting the Firefox app for … [Read more...] about A Bug Could Let Attackers Hijack Firefox for Android via Wi-Fi Network
Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks
In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for built-in "about: pages" that are the gateway to sensitive preferences, settings, and statics of the browser.Firefox browser has 45 such internal locally-hosted about pages, some of which … [Read more...] about Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks
Mozilla Launches ‘Firefox Private Network’ VPN Service as a Browser Extension
Mozilla has officially launched a new privacy-focused VPN service, called Firefox Private Network, as a browser extension that aims to encrypt your online activity and limit what websites and advertisers know about you.Firefox Private Network service is currently in beta and available only to desktop users in the United States as part of Mozilla's recently expunged "Firefox … [Read more...] about Mozilla Launches ‘Firefox Private Network’ VPN Service as a Browser Extension
Firefox 69 Now Blocks 3rd-Party Tracking Cookies and Cryptominers By Default
Mozilla has finally enabled the "Enhanced Tracking Protection" feature for all of its web browser users worldwide by default with the official launch of Firefox 69 for Windows, Mac, Linux, and Android.The company enabled the "Enhanced Tracking Protection" setting by default for its browser in June this year, but only for new users who downloaded and installed a fresh copy of … [Read more...] about Firefox 69 Now Blocks 3rd-Party Tracking Cookies and Cryptominers By Default
17-Year-Old Weakness in Firefox Let HTML File Steal Other Files From Device
Except for phishing and scams, downloading an HTML attachment and opening it locally on your browser was never considered as a severe threat until a security researcher today demonstrated a technique that could allow attackers to steal files stored on a victim's computer.Barak Tawily, an application security researcher, shared his findings with The Hacker News, wherein he … [Read more...] about 17-Year-Old Weakness in Firefox Let HTML File Steal Other Files From Device
Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks
If you use the Firefox web browser, you need to update it right now.Mozilla earlier today released Firefox 67.0.3 and Firefox ESR 60.7.1 versions to patch a critical zero-day vulnerability in the browsing software that hackers have been found exploiting in the wild.Discovered and reported by Samuel Groß, a cybersecurity researcher at Google Project Zero, the vulnerability could … [Read more...] about Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks
Firefox Web Browser Now Blocks Third-Party Tracking Cookies By Default
As promised, Mozilla has finally enabled "Enhanced Tracking Protection" feature on its Firefox browser by default, which from now onwards would automatically block all third-party tracking cookies that allow advertisers and websites to track you across the web.Tracking cookies, also known as third-party cookies, allows advertisers to monitor your online behavior and interests, … [Read more...] about Firefox Web Browser Now Blocks Third-Party Tracking Cookies By Default
How to Verify a Secure Connection to iCloud.com in Safari, Chrome and Firefox
Following reports that Chinese authorities are using a 'man-in-the-middle attack' to gather usernames and passwords from iCloud users. Apple has posted a support document with instructions on verifying a secure connection to the iCloud website. Apple is deeply committed to protecting our customers’ privacy and security. We’re aware of intermittent organized … [Read more...] about How to Verify a Secure Connection to iCloud.com in Safari, Chrome and Firefox