Update Firefox Now

Update Firefox Now!

If you use the Firefox browser, you need to update it right away. There is a major exploit actively trying to steal your data. TheNextWeb is reporting:

A major vulnerability discovered by Mozilla lurking in an advertisement shown by a Russian news site could steal your files and upload them to a Ukrainian server without you ever knowing.

The flaw exploits Firefox’s PDF viewer and the JavaScript…

View On WordPress

Update Firefox Now

If you use the Firefox browser, you need to update it right away. There is a major exploit actively trying to steal your data. TheNextWeb is reporting:

A major vulnerability discovered by Mozilla lurking in an advertisement shown by a Russian news site could steal your files and upload them to a Ukrainian server without you ever knowing.

The flaw exploits Firefox’s PDF viewer and the JavaScript context to inject a script that can search for and upload local files. All you need to do is load the page with the exploit and it’ll silently steal files in the background.

All Firefox users are urged to update to version 39.0.3 right away.

Meet The Internet’s Nasty New “Poodle” Attack – ReadWrite

There are a few things you can do to protect yourself against Poodle attack. For starters, if you can’t wait for your browser to disable SSL 3.0, you can turn it off yourself:

  • In Chrome, you’ll have to issue the command-line flag –ssl-version-min=tls1, though doing that isn’t completely straightforward. Instructions for Windows, Mac, Linux and Chrome OS are here.

  • In Firefox, enter about:config in the browser bar, then scroll down until you find the security.tls.version.min parameter. Double-click on it and enter “1” in the popup window.

  • In Internet Explorer, open Tools->Internet options and click on the “Advanced” tab. Scroll down and uncheck “Use SSL 3.0.”

It’s possible that doing this will break some of your Internet services, although the odds of that seem low unless you’re trapped using some custom-built site that never updated.

via ReadWrite.com

Meet The Internet’s Nasty New “Poodle” Attack – ReadWrite