Blog | G5 Cyber Security

Bug that hit Firefox and Tor browsers was hard to spotnow we know why

A security vulnerability that affected both the Firefox and Tor browsers had a highly unusual characteristic that caused it to threaten users only during temporary windows of time that could last anywhere from two days to more than a month. The bug was scheduled to reappear for a few days in November and for five weeks in December and January. While the windows were open, the browsers failed to enforce a security measure known as certificate pinning when automatically installing NoScript and certain other browser extensions. Such an attack was only viable at certain periods when Mozilla-supplied “pins” expired.”]

Source: https://arstechnica.com/information-technology/2016/09/bug-that-hit-firefox-and-tor-browsers-was-hard-to-spot-now-we-know-why/

Exit mobile version