From the Mozilla Add-ons Blog: A group of malicious add-ons going by various names like Codec, Codec-C and Codec-M have been added to the add-on blocklist. This is a new type of block that covers multiple add-on ids, so we want to cover all of our bases…
Security
Read More
Looks like Oracle is going to be paying out some overtime to its developers who worked over the weekend to get Java 7 Update 11 released. This emergency update patches the latest (announced January 10th) vulnerability CVE-2013-0422 as well as CVE-2012-3174 from June 2012. They have also changes the way Java interacts with web applications “The default security level for Java applets and web start applications has been increased from ‘medium’ to ‘high,” Oracle said in the advisory. This means the user will always be prompted to before an unsigned Java applet or Web Start application can run. Previously, Java applets and applications ran automatically is users…
Java Release 7 Update 11 (released January 13, 2013) fixes this issue. More info here. US Department of Homeland Security is advising computer uses to temporarily disable their browsers’ Java Plugin(s). This comes after after Thursday’s advisory concerning vulnerabilities in the current Java 7 Release 10 plugin. Experts believe hackers have found a flaw in Java’s coding that creates an opening for criminal activity and other high-tech mischief. How to disable Java plugin on your browser: Firefox: in the address bar type about:addons and press enter. The add-ons manager will open. On the left side select Plugins. Locate the plugins you want to disable and click the Disable button. Note: a browser restart may…
Java Release 7 Update 11 (released January 13, 2013) fixes this issue. More info here. In response to the recent news about the major vulnerability found in Java 7 Update 10, Mozilla has enabled click to play for recent versions of Java on all platforms (Java 7u9, 7u10, 6u37, 6u38). This is being done automatically for users who are using Firefox 17 or newer. The Click To Play feature ensures that the Java plugin will not load unless a user specifically clicks to enable the plugin. This protects users against drive-by exploitation, one of the most common exploit techniques used to compromise vulnerable users….
Java Release 7 Update 11 (released January 13, 2013) fixes this issue. More info here. ” The latest Java version, Java 7 Update 10 contains a critical security vulnerability which is reportedly already being used for large scale cyberattacks. Users who have Java installed on their computers should deactivate the Java plugin in their browsers without delay. …” Source: The H Security: News and Features More Dangerous vulnerability in latest Java version
10 January 2013 ” Foxit Reader installs the browser plugins for Chrome, Firefox, Opera and Safari by default. “ Source: The H Security: News and Features More Current Foxit Reader can execute malicious code
Although I do not use Trend Micro my Cisco router blacklist evidently does as I was one of notifiers.Since I refer/link to his site all the time I thought I should put this up. “I received a couple of emails in the past five days that informed me that this site’s newsletter and later on the site were blocked by Trend Micro. The message that site visitors received was troubling. Trend Micro claimed that every page of the site was a “dangerous page” and that the company has confirmed that the website can “transmit malicious software or has been involved…
Mozilla has released the next version, Firefox 18 on January 8, 2013 for both desktop and Android users. Several fixes and enhancements including faster JavaScript performance via IonMonkey compiler and support for Retina Display on OS X 10.7 and up. See release notes [Desktop | Android] for full details. Firefox for Organizations 10.0.12esr and 17.0.2esr are in process of being released. Depending on your settings (Firefox Menu > Options > Options > Advanced > Update Tab) you will be promoted within the next the 24-48 hours to update or can manually check via Firefox Menu > Help > About Firefox. You can also download…
Changes are coming to way Firefox handles Private Browsing with Firefox 20 due out in early April 2013. In private browsing mode your browsing history is not saved and your existing cookies do not carry over into session, nor will any cookies from the private browsing session carry back to your main session. Currently in Firefox when you enable Private Browsing, your current session is saved and Firefox ‘restarts’ in private browsing mode. When you are done and select the Stop Private Browsing option, Firefox ends the sessions and ‘restarts’ back to where you left off prior, reloading your tabs…
Awhile back a user in Go Firefox! had posted their Firefox had been modified by Babylon. The translation software had added a bunch of bloatware into Firefox including a toolbar as well as making itself the default home page and search engine. A couple of other users have reported this issue as well. I happened to be checking the Mozilla Support site and saw one of the Hot Topic is How to remove the Babylon toolbar, home page and search engine. This is a very good step-by-step article with lots of screenshots that will help you get rid of Babylon…