Firefox - Security Intelligence

In a recently released advisory, Mozilla announced that it has disabled the Firefox opportunistic encryption in Firefox 37 after a security flaw was discovered. The flaw lets attackers use a MitM attack to impersonate a legitimate website.

news

Security Flaw Pushes Mozilla to Disable Firefox Opportunistic Encryption Capability

According to Mozilla, it has disabled its Firefox opportunistic encryption capability after a security flaw that allowed for MitM attacks was discovered.

April 9, 2015 | By Jaikumar Vijayan

news

Security researchers hacked into all four major browsers in the Pwn2Own competition. The competition is meant to encourage responsible bug disclosure practices and awards cash prizes to hackers who can reach a certain level of exploitation.

news

All Four Major Browsers Hacked in Pwn2Own Competition

All four major browsers were hacked by security researchers at the Pwn2Own competition, which is designed to encourage responsible bug disclosures.

March 25, 2015 | By Jaikumar Vijayan

news

Tools for Amateur and Professional Hacker to Exploit Vulnerabilities

article

Underground Cybercrime: Exploits for Sale

Trusteer's security team has recently identified a new offering from a Russian cybercrime forum member: An exploit that, according to the seller, is successful 95 percent of the time.

April 25, 2014 | By Dana Tamir

article

New Vulnerabilities in Firefox for Android: Overtaking Firefox Profiles

We have recently discovered a series of vulnerabilities in Firefox for Android that allows a malicious application to leak sensitive information pertaining to the user profile. We developed attacks that first try to determine the random Firefox...

March 26, 2014 | By Roee Hay

article

OddJob: New Financial Trojan Keeps Online Banking Sessions Open After Users Logout

OddJob, a new type of financial malware discovered by Trusteer, keeps online banking sessions open after customers think they have logged off.

February 22, 2011 | By Amit Klein

article

Attackers Compromise Admin Account to Infect Manufacturing Company With BitPaymer Ransomware

Spear Phishing Report Card: Perfect Scores in School Security Pen Testing

Google 2FA Approach Turns Android Smartphones Into Security Keys

April Scams May Ruin Plans: Threat Actors Ramp Up for Tax Scam Season

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

How a Cunning Remote Overlay Malware Met Its Match

The US Is Slow to Adopt EHRs, But That Might Actually Be a Good Thing for Healthcare Security

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

Credential Dumping Campaign Hits Multinational Corporations

Cybercriminals Spoof Major Accounting and Payroll Firms in Tax Season Malware Campaigns

Buffer Overflow Vulnerability in TP-Link Routers Can Allow Remote Attackers to Take Control

Podcast: Muscle Memory and Cyber Fitness Training

Podcast: Zero Trust and the Evolving Role of Identity and Access Management

Podcast: Digital Identity Trust, Part 3 — Powering Digital Growth With Digital Identity Trust

Podcast: Monitoring National Cybersecurity Trends With Former NSA Deputy Director Bill Crowell

Webinar: MacOS Management Made Easy with MaaS360

Webinar: Encryption is the Fastest Way to Protect Data

Webinar: Under the Radar: Live Webinar and Demo

Webinar: Facilitating Secure Hybrid Cloud Adoption with Guardium

Tag: Firefox

Security Flaw Pushes Mozilla to Disable Firefox Opportunistic Encryption Capability

All Four Major Browsers Hacked in Pwn2Own Competition

Underground Cybercrime: Exploits for Sale

New Vulnerabilities in Firefox for Android: Overtaking Firefox Profiles

OddJob: New Financial Trojan Keeps Online Banking Sessions Open After Users Logout