HackDig : Dig high-quality web security articles for hackers

Firefox 79 is out – it’s a double-update month so patch now!

byPaul DucklinYou’ve probably heard of a Blue Moon, which is the second full moon in any calendar month.The last one was back in 2018; the next one is coming up in October 2020.Well, 28 July 2020 is a Blue Firefox Update event – the second major security fix of the month, given that Mozilla now uses an every-four-weeks-on-Tuesday rhythm, and Fire
Publish At:2020-07-28 14:27 | Read:94 | Comments:0 | Tags:Firefox Mozilla ASLR update

Monday review – the hot stories of the week

byNaked Security writer Get yourself up to date with everything we've written in the last seven days – it's weekly roundup time. Monday 6 July 2020 Boston bans government use of facial recognition Tuesday 7 July 2020 Company web
Publish At:2020-07-13 06:25 | Read:145 | Comments:0 | Tags:Weekly Summary EARN-IT Firefox Hushpuppi Law and Order monda

Cisco Talos discloses technicals details of Chrome, Firefox flaws

Cisco’s Talos experts disclosed the details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. Researchers from Cisco Talos disclosed technical details of recently patched vulnerabilities affecting the popular Chrome and Firefox web browsers. The first issue, tracked as CVE-2020-6463, is a memory corruption vulne
Publish At:2020-07-05 09:50 | Read:215 | Comments:0 | Tags:Breaking News Hacking Security Chrome Firefox hacking news i

Cisco disclosed technical details for Firefox code execution flaw

Cisco Talos experts released technical details on a recently addressed vulnerability in Firefox that could be exploited for code execution. Security experts from Cisco Talos have released technical details on a recently addressed vulnerability in Firefox, tracked as CVE-2020-12405, that could be exploited by attackers for remote code execution. The iss
Publish At:2020-06-11 07:12 | Read:214 | Comments:0 | Tags:Breaking News Hacking CVE-2020-12405 Firefox IT Pierluigi Pa

Firefox fixes cryptographic data leakage in latest security update

byPaul DucklinWe don’t know whether lockdown has anything to do with it, but how time flies!We couldn’t believe it either – it’s four weeks since Firefox’s last regular security update.If you want to check your version numbers, Firefox 76.0 is now replaced by 77.0; Firefox 68.8.0ESR is now 68.9.0ESR, and the Tor Browser, based o
Publish At:2020-06-03 14:05 | Read:294 | Comments:0 | Tags:Firefox Mozilla Exploit vulnerability

Google and Mozilla address serious flaws in Firefox and Chrome browsers

Google and Mozilla released new versions of Chrome and Firefox browsers to addressed several high-severity vulnerabilities. Mozilla has released Firefox version 75 that includes six security patches for the desktop, and two patches targeting to address vulnerabilities in the Android app. “With today’s release, a number of improvements will
Publish At:2020-04-09 14:28 | Read:652 | Comments:0 | Tags:Breaking News Security Chrome Firefox Google hacking news in

Update Firefox again – more RCEs and an Android “takeover” bug too

byPaul DucklinThis weekend, we were urging you to check your Firefox version to make sure you were up to date……and now we’re urging you to check again.The update that came out over the weekend was an emergency patch, issued for a security hole that was found because it was already in use by criminals in real life – what’s known
Publish At:2020-04-08 08:21 | Read:745 | Comments:0 | Tags:Android Firefox Mozilla Vulnerability Exploit Patch rce vuln

Twitter warns users – Firefox might hold on to private messages

byPaul DucklinA bit of a brouhaha erupted at the end of last week – it wasn’t quite an argument between Twitter and Firefox, but it did get confusing pretty quickly.The issue had to do with how long your browser might hang on to local copies of private data such as direct messages, even after they’d actually been posted.Twitter published an
Publish At:2020-04-07 09:17 | Read:418 | Comments:0 | Tags:Privacy caching DM Firefox Mozilla Twitter

Twitter discloses privacy issue that caused caching of files sent via DMs in Firefox

Twitter discloses a privacy issue in the way the Mozilla Firefox cached private files sent or received via DM for up to 7 days. Twitter admitted that the private files sent via Twitter DMs were cached inside the users’ Firefox browsers for up to seven days, even if users have logged off. The problem is related to the way the Mozilla Firefox web b
Publish At:2020-04-04 15:17 | Read:463 | Comments:0 | Tags:Breaking News Digital ID Security Social Networks Firefox in

Firefox 74.0.1 addresses two zero-days exploited in the wild

Mozilla releases Firefox version 74.0.1 to address two vulnerabilities exploited by threat actors in attacks in the wild, users should update their browsers asap. Mozilla is urging users to install the latest version of its browser, Firefox 74.0.1, which addresses two bugs that are being exploited in the wild by threat actors. The two vulnerabilities
Publish At:2020-04-04 15:17 | Read:688 | Comments:0 | Tags:Security Firefox Hacking hacking news it security it securit

Hackers exploited IE and Firefox flaws in attacks on entities in China, Japan

An APT group is exploiting the flaws patched earlier this year in Firefox and Internet Explorer in attacks aimed at China and Japan. An APT group is exploiting two vulnerabilities patched earlier this year in Firefox and Internet Explorer in attacks aimed at China and Japan. The first issue, tracked as CVE-2019-17026, affects the Firefox browser and wa
Publish At:2020-04-02 17:58 | Read:634 | Comments:0 | Tags:Breaking News Hacking China Firefox IE information security

Firefox 76 will have option to enforce HTTPS-only connections

byJohn E DunnConverting websites from HTTP to HTTPS over the last decade must count as one of the most successful quiet security upgrades ever to affect web browsing.Using an HTTPS site means that your browser and the site establish an encrypted connection which can’t be snooped on by ISPs, rogue Wi-Fi access points, or anyone else trying to monitor the cont
Publish At:2020-03-27 10:24 | Read:541 | Comments:0 | Tags:Firefox Google Mozilla Security threats Web Browsers browser

Firefox 73.0.1 fixes crashes, blank web pages and DRM niggles

byJohn E DunnFirefox version 73 has only been out for a week but already Mozilla has had to update it to version 73.0.1 to fix a range of browser problems and crashes, including when running on Linux machines.The list of issues is surprisingly long for a point release but, in most cases, the issues only happen in specific contexts. Despite this, some of the
Publish At:2020-02-20 07:51 | Read:652 | Comments:0 | Tags:Firefox Mozilla Security threats Vulnerability Web Browsers

Firefox six-weekly security fixes are out – get them now!

byPaul DucklinMozilla’s own “patch Tuesday” for Firefox happened this week.Rather than patching once a calendar month, Mozilla goes for every sixth Tuesday – or every 42 days, which we call Fortytwosday in a hat-tip to HHGttG.This update takes the regular build of Firefox to 73.0, while the long-term release, which includes security f
Publish At:2020-02-15 12:44 | Read:509 | Comments:0 | Tags:Firefox Mozilla Vulnerability Exploit fortytwosday vulnerabi

Freedom Hosting owner pleads guilty to distributing child abuse images

byJohn E DunnThe man arrested for running what was once believed to be the largest child abuse hosting provider on the dark web, has pleaded guilty in a US court to the charge of advertising child pornography.That service was Freedom Hosting and the man who operated it from its founding in 2008 until his arrest in Ireland in 2013 was dual US-Irish national,
Publish At:2020-02-11 09:34 | Read:507 | Comments:0 | Tags:Law & order child abuse child abuse imagery Eric Eoin Marque


Share high-quality web security related articles with you:)