Security News

Firefox 90 Drops Support for FTP Protocol
2021-07-26 16:19

Mozilla has completely removed support for the File Transfer Protocol from the latest release of its flagship Firefox web browser. FTP has been abused in various malware distribution campaigns, some of which involved the compromise of FTP servers to leverage the protocol for payload delivery.

Microsoft Edge Adds Password Generator, Drops Support for Flash, FTP
2021-01-22 17:53

Microsoft has shipped the stable version of the Microsoft Edge 88 browser, featuring a brand new Password Generator and the ability to alert on compromised credentials. With Microsoft Edge 88.0.705.50 now rolling out, users get a built-in strong password generator that allows them to easily set up new passwords when signing up for new accounts or when changing the old passwords.

Google Chrome 88 released: RIP Flash Player and FTP support
2021-01-19 13:45

Google has released Chrome 88 today, January 19th, 2021, to the Stable desktop channel, and it includes security improvements and the long-awaited removal of Adobe Flash Player. Chrome 88 is now promoted to the Stable channel, Chrome 89 is the new Beta version, and Chrome 90 will be the Canary version.

We're not saying this is how SolarWinds was backdoored, but its FTP password 'leaked on GitHub in plaintext'
2020-12-16 00:00

In a message to The Register, Kumar said that on November 19, 2019, he told SolarWinds "Their update server was accessible with the password 'solarwinds123' which is leaking in the public Github repo. They fixed the issue and replied to me on." Using the exposed account name and password, he was able to upload a file to prove the system was insecure, he said he wrote in his report to SolarWinds, adding that a hacker could use the credentials to upload a malicious executable and add it to a SolarWinds update.

Google Keeps Support for FTP in Chrome
2020-04-14 15:27

Google has decided to keep support for the File Transfer Protocol in Chrome a bit longer, after initially saying it would completely remove it in Chrome 82. Due to the lack of support for secure connections or proxies, the implementation of FTP in Chrome creates security risks for users.

Firefox is dropping FTP support
2020-03-23 12:18

Firefox Extended Support Release will continue to have FTP turned on by default in ESR version 78. A part of the FTP code is very old, unsafe and hard to maintain and we found a lot of security bugs in it in the past.

Mozilla to Remove Support for FTP in Firefox
2020-03-21 13:46

Mozilla is getting ready to remove support for the File Transfer Protocol from the Firefox web browser due to security concerns. The Internet giant aims to completely remove support for FTP in Chrome 82.

Firefox to burn FTP out of its browser, starting slowly in version 77 due in April
2020-03-20 10:15

Firefox has decided it's time to burn the browser's FTP connections. Platform list, developer Michal Novotny announced "We plan to remove FTP protocol implementation from our code."

RIP FTP? File Transfer Protocol switched off by default in Chrome 80
2020-02-05 18:48

Chrome 80 emerged from Google this week with a few more nails to hammer into the coffin of the venerable File Transfer Protocol. It has been a death by a thousand cuts for FTP in Chrome.

RCE Flaw Found in ProFTPD (FTP Server) — Affecting Over 1 Million Servers
2019-07-23 16:03

A German security researcher has publicly disclosed details of a severe vulnerability in one of the most popular FTP server applications, which potentially could affect over one million servers....