Latest in Gear

Image credit: JasonDoiy via Getty Images

Homeland Security wants you to update your Firefox browser right now

It says attackers could exploit a vulnerability to ‘take control’ of your system.
421 Shares
Share
Tweet
Share
Save

Sponsored Links

JasonDoiy via Getty Images

The Department of Homeland Security is urging Firefox users to update their browsers. The rare warning was issued earlier this week, after Mozilla released two critical security updates. According to the Cybersecurity and Infrastructure Security Agency (CISA), the exploit could allow hackers to "take control of an affected system."

Mozilla is "aware of targeted attacks in the wild abusing this flaw." In a statement provided to Engadget, a Mozilla spokesperson said, "on Tuesday, January 7, 2020, Chinese security firm Qihoo 360 reported a vulnerability that was used as part of targeted attacks on a local network. We started shipping Firefox updates to address this security vulnerability the next morning."

If this all sounds a bit familiar, that's likely because it's the third zero-day exploit Mozilla has patched in less than a year. Last summer, Mozilla found two critical bugs in less than a week's time. Both vulnerabilities were actively exploited.

We don't know exactly how the current vulnerability is being abused. But Mozilla says, "incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion." To be safe, you'll want to download Firefox 72.0.1 or ESR 68.4.1.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
421 Shares
Share
Tweet
Share
Save

Popular on Engadget

Bloomberg: Apple will start making a smaller, cheaper iPhone in February

Bloomberg: Apple will start making a smaller, cheaper iPhone in February

View
Cruise's self-driving electric shuttle is made for ridesharing

Cruise's self-driving electric shuttle is made for ridesharing

View
Verizon promo gives gigabit Fios customers free Google Stadia bundles

Verizon promo gives gigabit Fios customers free Google Stadia bundles

View
Boeing doesn't expect the 737 Max to resume flying before mid-2020

Boeing doesn't expect the 737 Max to resume flying before mid-2020

View
Vodafone is the latest to leave Facebook's Libra Association

Vodafone is the latest to leave Facebook's Libra Association

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr