" />
Web

Mozilla urges users to upgrade Firefox after security flaw found

Mozilla urges users to upgrade Firefox after security flaw found

Mozilla has hurried out a major update to its Firefox browser this weekend which is designed to rectify a significant security flaw identified last week.

Soon after releasing Firefox 16 last week the browser maker found that a security hole could allow hackers to see Firefox users’ browsing history and URL parameters.  The Mozilla community was quick to spot the issue and removed the update from its site but not before the version was downloaded by hundreds users.

Since April 2012 Mozilla has been automatically updating users’ versions of Firefox.

Users that did upgrade to Firefox 16 are being urged to upgrade to Firefox 16.0.1 which the organisation says removes the flaw.

“The vulnerability could allow a malicious site to potentially determine which websites users have visited and have access to the URL or URL parameters.  At this time we have no indication that this vulnerability is currently being exploited in the wild.”

The security hole was not knowingly exploited by any hackers, although some users were able to test the issue to see how it could be used to obtain users’ personal data.  One test  managed to obtain a user’s Twitter ID amongst other data.  The flaw was only introduced with Firefox 16, no earlier version of the program is vulnerable.

The danger could be that hackers could associate a user’s search habits with their social networking accounts to build a profile of their online activities.

You can check if you have the flawed version of Firefox by clicking Help > About (or pressing Alt+H+A) in the browser.  Firefox should then check for the latest correct version of the software and begin downloading this automatically.  Alternatively, Firefox 16.0.1 can be downloaded from the Firefox website.

How to check your Firefox version

While this is an embarrassment for Mozilla, the open source browser is still considered to be one of the most secure.

Last month the German government urged its citizens to stop using Microsoft’s Internet Explorer because a Trojan, called Poison Ivy which targets the browser, had yet to be fixed.  A successful Poison Ivy attack would have provided hackers with control over the user’s system.

View Comments (3)

3 Comments

  1. Pingback: Firefox Daily News : October 15, 2012 | Firefox Daily

  2. Pingback: Firefox Daily News : October 16, 2012 | Firefox Daily

  3. arjoonkanth

    October 22, 2012 at 2:01 AM

    @komiska Yeah! I have been using it. But no problem so far 🙂

Leave a Reply

Your email address will not be published. Required fields are marked *

Web
@pdscott

Piers Dillon-Scott is co-editor of The Sociable and writes about stuff he finds. He likes technology, media, and using the Oxford comma (because it just makes sense).

More in Web

over the top sports

Over the top sports and why you won’t be streaming the World Cup final

Peter AndringaFebruary 9, 2018
seo

AI is the only way to cope with AI-driven SEO

Ben AllenFebruary 8, 2018
webinar next web

Webinar with The Next Web former editor on the future of digital media, startups

Tim HinchliffeFebruary 7, 2018
dothealth

BeeWell launches on .health, over 90 dotHealth websites live, 5K domains registered

Tim HinchliffeJanuary 31, 2018
video editing compression conversion

The all-in-one video editing, compression and conversion platform with in-built privacy and sharing

Sponsored PostJanuary 31, 2018
sociable video round up

Introducing The Sociable News Video Round UP

Tim HinchliffeJanuary 30, 2018
fintech blockchain espacio mi dinero

Mi Dinero fintech, blockchain news publication in Spanish launches from Espacio incubator

adminJanuary 25, 2018

Chrome ad-blocker set to transform online advertising in February

Peter AndringaJanuary 23, 2018
shitcoin, altcoin, startup, investment, tech

The social dynamics and market forces at work in the subterranean battle between shitcoin and altcoin

Ben AllenJanuary 23, 2018