Latest in Firefox

Image credit:

Firefox has a new security hole, but you can already patch it

Share
Tweet
Share
Save

Sponsored Links

Yesterday, someone noticed that an ad from a Russian news site was exploiting a serious vulnerability in the Firefox browser. According to a Mozilla security post, the attacker was able to bypass the browser's "origin policy" (its front line of security), inject a malicious javascript script and download sensitive local files to a server in the Ukraine. Mozilla said the attack was "surprisingly developer-focused for an exploit launched a general audience news site," because it hunted browser and FTP configuration files. It added that the "exploit leaves no trace that it has run on the local machine."

The organization said the malicious scripts can affect PC and Linux computers, but not Macs. Apple users are still advised to update, though, as hackers could develop a different attack script for OS X. Luckily, the person who spotted the flaw was security researcher Cody Crews, who immediately notified Mozilla. It has patched the flaw with Firefox version 39.0.3, so now would be a good time to get it.

Source: Mozilla
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
Tweet
Share
Save

Popular on Engadget

The 2019 Engadget Holiday Gift Guide

The 2019 Engadget Holiday Gift Guide

View
Mach-E leak reveals a lot about Ford's electric Mustang SUV

Mach-E leak reveals a lot about Ford's electric Mustang SUV

View
Amazon is challenging Microsoft's $10 billion JEDI contract victory

Amazon is challenging Microsoft's $10 billion JEDI contract victory

View
Microsoft is adding 10 'Final Fantasy' games to Xbox Game Pass

Microsoft is adding 10 'Final Fantasy' games to Xbox Game Pass

View
'West of Dead' is a fast-paced shooter starring Ron Perlman

'West of Dead' is a fast-paced shooter starring Ron Perlman

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr