Firefox - Security Intelligence

In a recently released advisory, Mozilla announced that it has disabled the Firefox opportunistic encryption in Firefox 37 after a security flaw was discovered. The flaw lets attackers use a MitM attack to impersonate a legitimate website.

news

Security Flaw Pushes Mozilla to Disable Firefox Opportunistic Encryption Capability

According to Mozilla, it has disabled its Firefox opportunistic encryption capability after a security flaw that allowed for MitM attacks was discovered.

April 9, 2015 | By Jaikumar Vijayan

news

Security researchers hacked into all four major browsers in the Pwn2Own competition. The competition is meant to encourage responsible bug disclosure practices and awards cash prizes to hackers who can reach a certain level of exploitation.

news

All Four Major Browsers Hacked in Pwn2Own Competition

All four major browsers were hacked by security researchers at the Pwn2Own competition, which is designed to encourage responsible bug disclosures.

March 25, 2015 | By Jaikumar Vijayan

news

Tools for Amateur and Professional Hacker to Exploit Vulnerabilities

article

Underground Cybercrime: Exploits for Sale

Trusteer's security team has recently identified a new offering from a Russian cybercrime forum member: An exploit that, according to the seller, is successful 95 percent of the time.

April 25, 2014 | By Dana Tamir

article

New Vulnerabilities in Firefox for Android: Overtaking Firefox Profiles

We have recently discovered a series of vulnerabilities in Firefox for Android that allows a malicious application to leak sensitive information pertaining to the user profile. We developed attacks that first try to determine the random Firefox...

March 26, 2014 | By Roee Hay

article

OddJob: New Financial Trojan Keeps Online Banking Sessions Open After Users Logout

OddJob, a new type of financial malware discovered by Trusteer, keeps online banking sessions open after customers think they have logged off.

February 22, 2011 | By Amit Klein

article

Fake Android Apps Steal Cryptocurrency Credentials With 2FA Bypass Technique

TCP SACK Panic Flaw Could Compromise Production Linux Machines

Free Decryption Tool Enables Victims of GandCrab Ransomware to Recover Their Files

Outlaw Threat Group Using Botnet to Distribute Monero Miner, Perl-Based Backdoor

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Critical RCE Vulnerability in TP-Link Wi-Fi Extenders Can Grant Attackers Remote Control

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

Podcast: Reducing Third-Party Risk

Podcast: Development Agility and Open-Source Vulnerability Prioritization

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Webinar: How to Outmatch Data Security Challenges with Cost-Effective, Practical Strategies

Webinar: Total Recon: See You Online, Richter

Digital Identity Trust at Cyber Week 2019 – Tel Aviv, Israel

Webinar: IBM i2 User Group Webinar: Advance Your Existing i2 Capabilities

Tag: Firefox

Security Flaw Pushes Mozilla to Disable Firefox Opportunistic Encryption Capability

All Four Major Browsers Hacked in Pwn2Own Competition

Underground Cybercrime: Exploits for Sale

New Vulnerabilities in Firefox for Android: Overtaking Firefox Profiles

OddJob: New Financial Trojan Keeps Online Banking Sessions Open After Users Logout