HackDig : Dig high-quality web security articles for hackers

Google and Mozilla fixed issues exploited at 2020 Tianfu Cup hacking contest

Mozilla and Google have already fixed the critical flaws in Firefox and Chrome exploited by bug bounty hunters at 2020 Tianfu Cup hacking contest. Mozilla and Google have already addressed the critical Firefox and Chrome vulnerabilities that were recently exploited by white hat hackers at the 2020 Tianfu Cup hacking contest. The vulnerability in Chrome
Publish At:2020-11-11 15:41 | Read:221 | Comments:0 | Tags:Breaking News Hacking Security 2020 Tianfu Cup Chrome Firefo

Mozilla patches critical security issues in Firefox and Thunderbird

Mozilla has issued a critical patch for Firefox, Firefox ESR, and Thunderbird after a security issue was discovered at the Tianfu Cup 2020 International Cybersecurity Contest The security issue has been assigned CVE-2020-26950 which has the “reserved” status. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures
Publish At:2020-11-10 14:47 | Read:142 | Comments:0 | Tags:Exploits and vulnerabilities buffer overflow cve-2020-26950

Mozilla offers rewards for Bypassing Firefox Exploit Mitigations

Mozilla has expanded its bug bounty program including rewards for bypass methods for the exploit mitigations and security features in Firefox. Mozilla announced this week that it has expanded its bug bounty program with a new category that focuses on bypass methods for the exploit mitigations, security features, and defense-in-depth measures implemented i
Publish At:2020-08-21 12:58 | Read:526 | Comments:0 | Tags:Breaking News Security Bug Bounty Firefox Hacking hacking ne

Firefox 79 is out – it’s a double-update month so patch now!

byPaul DucklinYou’ve probably heard of a Blue Moon, which is the second full moon in any calendar month.The last one was back in 2018; the next one is coming up in October 2020.Well, 28 July 2020 is a Blue Firefox Update event – the second major security fix of the month, given that Mozilla now uses an every-four-weeks-on-Tuesday rhythm, and Fire
Publish At:2020-07-28 14:27 | Read:437 | Comments:0 | Tags:Firefox Mozilla ASLR update

Monday review – the hot stories of the week

byNaked Security writer Get yourself up to date with everything we've written in the last seven days – it's weekly roundup time. Monday 6 July 2020 Boston bans government use of facial recognition Tuesday 7 July 2020 Company web
Publish At:2020-07-13 06:25 | Read:543 | Comments:0 | Tags:Weekly Summary EARN-IT Firefox Hushpuppi Law and Order monda

Cisco Talos discloses technicals details of Chrome, Firefox flaws

Cisco’s Talos experts disclosed the details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. Researchers from Cisco Talos disclosed technical details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. The first issue, tracked as CVE-2020-6463, is a memory corruption vulne
Publish At:2020-07-05 09:50 | Read:842 | Comments:0 | Tags:Breaking News Hacking Security Chrome Firefox hacking news i

Cisco disclosed technical details for Firefox code execution flaw

Cisco Talos experts released technical details on a recently addressed vulnerability in Firefox that could be exploited for code execution. Security experts from Cisco Talos have released technical details on a recently addressed vulnerability in Firefox, tracked as CVE-2020-12405, that could be exploited by attackers for remote code execution. The iss
Publish At:2020-06-11 07:12 | Read:609 | Comments:0 | Tags:Breaking News Hacking CVE-2020-12405 Firefox IT Pierluigi Pa

Firefox fixes cryptographic data leakage in latest security update

byPaul DucklinWe don’t know whether lockdown has anything to do with it, but how time flies!We couldn’t believe it either – it’s four weeks since Firefox’s last regular security update.If you want to check your version numbers, Firefox 76.0 is now replaced by 77.0; Firefox 68.8.0ESR is now 68.9.0ESR, and the Tor Browser, based o
Publish At:2020-06-03 14:05 | Read:693 | Comments:0 | Tags:Firefox Mozilla Exploit vulnerability

Google and Mozilla address serious flaws in Firefox and Chrome browsers

Google and Mozilla released new versions of Chrome and Firefox browsers to addressed several high-severity vulnerabilities. Mozilla has released Firefox version 75 that includes six security patches for the desktop, and two patches targeting to address vulnerabilities in the Android app. “With today’s release, a number of improvements will
Publish At:2020-04-09 14:28 | Read:1019 | Comments:0 | Tags:Breaking News Security Chrome Firefox Google hacking news in

Update Firefox again – more RCEs and an Android “takeover” bug too

byPaul DucklinThis weekend, we were urging you to check your Firefox version to make sure you were up to date……and now we’re urging you to check again.The update that came out over the weekend was an emergency patch, issued for a security hole that was found because it was already in use by criminals in real life – what’s known
Publish At:2020-04-08 08:21 | Read:1113 | Comments:0 | Tags:Android Firefox Mozilla Vulnerability Exploit Patch rce vuln

Twitter warns users – Firefox might hold on to private messages

byPaul DucklinA bit of a brouhaha erupted at the end of last week – it wasn’t quite an argument between Twitter and Firefox, but it did get confusing pretty quickly.The issue had to do with how long your browser might hang on to local copies of private data such as direct messages, even after they’d actually been posted.Twitter published an
Publish At:2020-04-07 09:17 | Read:719 | Comments:0 | Tags:Privacy caching DM Firefox Mozilla Twitter

Twitter discloses privacy issue that caused caching of files sent via DMs in Firefox

Twitter discloses a privacy issue in the way the Mozilla Firefox cached private files sent or received via DM for up to 7 days. Twitter admitted that the private files sent via Twitter DMs were cached inside the users’ Firefox browsers for up to seven days, even if users have logged off. The problem is related to the way the Mozilla Firefox web b
Publish At:2020-04-04 15:17 | Read:794 | Comments:0 | Tags:Breaking News Digital ID Security Social Networks Firefox in

Firefox 74.0.1 addresses two zero-days exploited in the wild

Mozilla releases Firefox version 74.0.1 to address two vulnerabilities exploited by threat actors in attacks in the wild, users should update their browsers asap. Mozilla is urging users to install the latest version of its browser, Firefox 74.0.1, which addresses two bugs that are being exploited in the wild by threat actors. The two vulnerabilities
Publish At:2020-04-04 15:17 | Read:994 | Comments:0 | Tags:Security Firefox Hacking hacking news it security it securit

Hackers exploited IE and Firefox flaws in attacks on entities in China, Japan

An APT group is exploiting the flaws patched earlier this year in Firefox and Internet Explorer in attacks aimed at China and Japan. An APT group is exploiting two vulnerabilities patched earlier this year in Firefox and Internet Explorer in attacks aimed at China and Japan. The first issue, tracked as CVE-2019-17026, affects the Firefox browser and wa
Publish At:2020-04-02 17:58 | Read:1082 | Comments:0 | Tags:Breaking News Hacking China Firefox IE information security

Firefox 76 will have option to enforce HTTPS-only connections

byJohn E DunnConverting websites from HTTP to HTTPS over the last decade must count as one of the most successful quiet security upgrades ever to affect web browsing.Using an HTTPS site means that your browser and the site establish an encrypted connection which can’t be snooped on by ISPs, rogue Wi-Fi access points, or anyone else trying to monitor the cont
Publish At:2020-03-27 10:24 | Read:925 | Comments:0 | Tags:Firefox Google Mozilla Security threats Web Browsers browser

Tools