Adobe released an update to Flash on February 15th to address an exploit that affected Internet Exploiter users. Even if you don’t use IE, you should still update your Flash plugins. Also this would a good time to check on the ‘health’ of your other Firefox plugins. You can do this from within Firefox by going to Tools > Add-ons and then clicking the link Check to see if your plugins are up to date. This will open the Mozilla plugin checker site in a new tab where a quick scan will tell you which plugins needs to be updated.
Security
…Adobe has been modifying its popular Flash Player to include the sandbox technology that would block malicious code before executing. Adobe on Feb. 6 released a beta version of the Flash Player plug-in that has the sandbox for Firefox for Windows Vista and Windows 7. The final version is expected later this year…” Source: Security – News & Reviews – eWeek.comMore Adobe Flash Player Protected Mode Beta Released for Firefox ↑Go get it↓
…The pages – located at vkernel(dot)org, aveonix(dot)org, smolvell(dot)org, stocknick(dot)org – are not able to detect what browser the users use and serve either a Firefox or Chrome themed fake update warning. …Users are warned to be careful when being presented similar pages. The aforementioned four are still online, but there might be others. In any case, it’s always best to update your browser by using the updating mechanism it contains.” Source: net-security.org More Bogus “browser update” pages deliver malware ↑Go get it↓
Have you received an invitation to turn your Facebook profile red or black? Maybe pink?“Ignore it, security experts warn. It is another scam spreading on the social media site…” Friday, 13 Jan 2012, Source: MyFoxNY.com More Scam Offers Pink Facebook Profile Switch ↑Go get it↓
Mozilla recently announced the planned implementation of an Extended Support Release (ESR) for enterprise users and other users who do not want to take part of the rapid release cycle. We touched on ESR briefly back in October 2011. Under the ESR plan, there will be one ES Firefox release per year (the first based of the upcoming Firefox 10 due out at the end of this month). Under the rapid release process, there is a new Firefox release every six weeks which is about 8 releases per year (which is fairly close to the amount under the old release process)….
Mozilla released Firefox 3.6.25 on December 20, 2011. This release fixed several security issues and stability issues. Users of older versions of Firefox should be prompted to update within the next 24-48 hours. User can also go to to Help > About Firefox to update. The next release will be Firefox 3.6.26 scheduled for January 31st, 2012.
…Keystroke logging is the act of intercepting typed keys before they are displayed to the screen, then logging them to a file. This allows for intrusion and access to data—even passwords…” Source: businessinsider.com | WonderHowTo | Dec. 20, 2011 How to Defend from Keyloggers in Firefox with Keystroke Encryption
A quick follow-up to our Attack Page Mishap earlier this month. We have discovered the compromise was not with WordPress or the WP Backup Plugin, but instead with the ZenPhoto application. I use Zen Photo for the gallery on my elguru.me site. ZenPhoto released an update on 11/11/11 (a couple days after the attack). Unfortunately, unless I am actually in the admin panel there is no way to know if there is an update. However, they do have a feed on their site I was able to subscribe to that is used for updates.The attack itself was not directly caused…
…The scam, which tries to install a malicious .exe file onto a computer, claims that the new Facebook optimized version of Firefox is faster and easier to use… “ More Computeractive – News Go get it.
On November 15, 2011, Mozilla announced, the Electrolysis project (e10s) will be placed on hold for the foreseeable future. What exactly is e10s? It is a lot of things that improve the performance, security and even stability of Firefox. The first part of e10s was back with Firefox 3.6.4 (May 2010) with Out Of Process Plugins (OOPP). OOPP introduced the plugin container, which allowed plugins such as Flash, QuickTime, etc to run in their own process away from that of Firefox. OOPP prevented a crashing plugin from taking the entire browser down with it. Also part of the current e10s…