Security News > 2020 > April > Mozilla plugs two Firefox browser holes exploited in the wild by hackers to hijack victims' computers
Mozilla has released security updates for its Firefox browser in conjunction with a US Cybersecurity and Infrastructure Security Agency advisory warning that critical vulnerabilities in the browser are being actively exploited.
To address these flaws, Firefox was updated to version 74.0.1 and Firefox Extended Support Release - a slower evolving version for enterprises - was updated to 68.6.1.
Users can also check their version of Firefox via the Firefox -> About Firefox menu and manually initiate an update if one is available.
Because these bugs are considered critical, it's likely they could be exploited by malicious websites to run arbitrary code, such as malware or spyware, on the computers of visitors using vulnerable versions of Firefox.
Firefox recently slipped to third place in the browser popularity race, displaced by Microsoft Edge, which was replatformed last year onto the open source Chromium project.
News URL
https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/04/06/mozilla_firefox_security_patches/
Related news
- Mozilla Faces Privacy Complaint for Enabling Tracking in Firefox Without User Consent (source)
- Mozilla accused of tracking users in Firefox without consent (source)
- Mozilla fixes Firefox zero-day actively exploited in attacks (source)
- Firefox Zero-Day Under Attack: Update Your Browser Immediately (source)
- Mozilla patches critical Firefox vuln that attackers are already exploiting (source)