Saturday, February 4, 2023
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Cybersecurity > Malicious Firefox add-on prevented 455.000 users from getting security updates

Malicious Firefox add-on prevented 455.000 users from getting security updates

Malicious Firefox add-on blocked users to get security updates by abusing proxy API. It is reported that around 455.000 users are affected by this security issue.


Furkan Avcı Furkan Avcı
October 26, 2021
2 min read
firefox security issue

Mozilla announced that they blocked two malicious add-ons on Firefox that were causing security vulnerabilities by misusing proxy API to obstruct users from getting security updates. The two add-ons that were causing security issues are addressed as “Bypass and Bypass XM”.

Countermeasures to prevent any further security issues

As soon as the security issue was discovered, Mozilla took the initiative and paused the approval of all add-ons that deal with proxy API. By doing so, the team eliminated any new abusers of Proxy API from causing any further damage. This pause gave the team the opportunity to prepare hotfixes and updates to address the proxy API issue and as well as gave the users enough time to download these security updates.

The problematic add-ons were identified as Bypass and Bypass XM. Users who have downloaded them are highly advised to delete these add-ons. The ID’s for these add-ons are (7c3a8b88-4dc9-4487-b7f9-736b5f38b957 and d61552ef-e2a6-4fb5-bf67-8990f0014957) respectively.

Stuart Colville from the Mozilla Engineering Team
Stuart Colville from the Mozilla Engineering Team

Rachel Tulitz and Stuart Colville from the Mozilla engineering team said,

“To prevent additional users from being impacted by new add-on submissions misusing the proxy API, we paused on approvals for add-ons that used the proxy API until fixes were available for all users. Starting with Firefox 91.1, Firefox now includes changes to fall back to direct connections when Firefox makes an important request (such as those for updates) via a proxy configuration that fails. Ensuring these requests are completed successfully helps us deliver the latest important updates and protections to our users.”

If you’re not sure that you are safe from the threats of these malicious add-ons, you can permanently uninstall Firefox and make a clean reinstall. That way, you don’t have any traces left related to the security issue. You should always keep checking the security updates. Also, please make sure that Firefox security updates are enabled and working properly.

FAQ

What is the latest version of Mozilla Firefox?

The latest version of Mozilla Firefox is Firefox 109 and it was released on 17 January 2023.

Is Firefox still used today?

Yes, Firefox is still widely used today. It is a popular web browser that is known for its speed, security, and privacy features. It continues to be a popular choice among users who value privacy and security when browsing the web.

Is Mozilla Firefox a Chinese company?

No, Mozilla Firefox is not a Chinese company. It is a free and open-source web browser developed and maintained by the Mozilla Foundation, a non-profit organization based in the United States.

Is Mozilla Firefox free?

Yes, Mozilla Firefox is a free and open-source web browser. It is available for Windows, macOS, and Linux operating systems and can be downloaded from the official Mozilla website. Firefox is free to use, download, and distribute, and it is supported by a community of developers and users who contribute to its development and maintenance.

What are the system requirements for running Mozilla Firefox?

For Windows

  • Windows 7 or later
  • Pentium 4 or newer processor that supports SSE2
  • 512MB of RAM / 2GB of RAM for the 64-bit version
  • 200MB of hard drive space
For Mac
  • macOS 10.12 or later
  • Mac computer with an Intel x86 or Apple silicon processor
  • 512 MB of RAM
  • 200 MB hard drive space
For GNU/Linux
  • Firefox will not run at all without the following libraries or packages:
    • glibc 2.17 or higher
    • GTK+ 3.14 or higher
    • libstdc++ 4.8.1 or higher
    • X.Org 1.0 or higher (1.7 or higher is recommended)
  • For optimal functionality, we recommend the following libraries or packages:
    • DBus 1.0 or higher
    • GNOME 2.16 or higher
    • libxtst 1.2.3 or higher
    • NetworkManager 0.7 or higher
    • PulseAudio

See more Cybersecurity News


Tags: FirefoxMozilla
Furkan Avcı

Furkan Avcı

Furkan Avcı is an editor at Cloud7 News covering Linux distros, web hosting providers, data centers, and cloud computing issues and trends. Furkan Avcı is a Linux user and administrator. Furkan is a Java programmer and a cybersecurity enthusiast. Furkan has a bachelor’s degree in Mechatronics Engineering.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
OWC Announces Release of SoftRAID 6.2 for Mac

OWC announced release of SoftRAID 6.2 for Mac

Related News

LockBit encryptor source code is updated

LockBit encryptor source code is updated

February 3, 2023 4:40 pm
LibreOffice 7.5 Community is released. What's new

LibreOffice 7.5 Community is released. What’s new?

February 3, 2023 3:30 pm
Fortinet is expanding its SOC offerings portfolio

Fortinet is expanding its SOC offerings portfolio

February 3, 2023 2:00 pm
Radware announces a new partner program

Radware announces a new partner program

February 3, 2023 1:30 pm
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter
Select list(s):

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Get the free newsletter

Subscribe to receive the latest IT business updates straight to your inbox.

Select list(s):

Check your inbox or spam folder to confirm your subscription.

Editor's Choice

What’s new in Linux kernel 6.2 rc6?

10 Best Web Hosting Services of 2023

Ubuntu 22.04 LTS is available for download. What is new?

CERN and Fermilab recommend AlmaLinux

7 best hosting control panels of 2023

How to update Linux Kernel without rebooting?

7 best Linux mail servers of 2023

7 best cPanel alternatives for 2023

7 best Linux web browsers for 2023

7 best CentOS alternatives

7 best Linux server distros of 2023

Interview with Igor Seletskiy on AlmaLinux

How to create a VM on VMware Workstation

Recent News

  • What is Deep Learning?
  • What is GitHub Copilot?
  • Cloud7 Expert Series: Dennis Kittrell from CloudLinux
  • Best Ubuntu alternatives for desktop of 2023
  • How to enable UEFI in VMware Workstation

Cloud7 News
Cloud7 is a news source that publishes the latest news, reviews, comparisons, opinions, and exclusive interviews to help tech users of high-experience levels in the IT industry.

EXPLORE

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • How-Tos
  • Troubleshooting

RESOURCES

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2023, Cloud7 News. All rights reserved.

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2023, Cloud7 News. All rights reserved.

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.