Security News

Mozilla Reduces Threat of Export-Grade Crypto to Firefox (Threatpost)
2016-10-03 12:45

The Firefox browser will now deny TLS connections to servers using weak Diffie-Hellman keys.

Mozilla Wants to Drop WoSign as Trusted CA (Threatpost)
2016-09-27 18:51

Mozilla has proposed banning new SHA-1 certificates from Chinese Certificate Authority WoSign for one year after it accused the CA of back-dating the deprecated certs.

Mozilla Could Ban Certificates From Chinese CA WoSign (SecurityWeek)
2016-09-27 14:06

Mozilla to China's WoSign: We'll kill Firefox trust in you after mis-issued GitHub certs (ZDNet)
2016-09-27 10:36

Mozilla wants woeful WoSign certs off the list (The Register)
2016-09-27 04:21

Mozilla Patches Certificate Pinning Vulnerability in Firefox (Threatpost)
2016-09-21 12:58

A remote code execution in Firefox caused by the expiration of certificate pins was patched by Mozilla in Firefox 49 and Firefox ESR 45.4.

Mozilla Patching Firefox Certificate Pinning Vulnerability (Threatpost)
2016-09-19 20:03

Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions.

Mozilla will patch zero-day Firefox bug to fiddle man-in-the-middle diddle (The Register)
2016-09-18 23:35

Mozilla checks if Firefox is affected by same malware vulnerability as Tor (ArsTechnica)
2016-09-16 20:35

Mozilla Launches Website Security Testing Tool (SecurityWeek)
2016-08-26 14:37