uBlock Origin released as a pure WebExtension for Firefox

Friday, September 1st, 2017

A new WebExtension version of the popular content blocker uBlock Origin was just uploaded to Mozilla's official add-ons repository for Firefox. The new version is compatible with Firefox's new WebExtensions standard for extensions, and will as such continue to work when Firefox 57 gets released. This first official release of the WebExtensions ...

NoScript and other popular Firefox add-ons open millions to new attack

Tuesday, April 5th, 2016

NoScript, Firebug, and other popular Firefox add-on extensions are opening millions of end users to a new type of attack that can surreptitiously execute malicious code and steal sensitive data, a team of researchers reported. The attack is made possible by a lack of isolation in Firefox among various add-ons installed ...

All Major Web Browsers Fall in Pwn2Own Hacking Contest

Friday, March 20th, 2015

Security researchers nabbed $552,500 in bounties at this year's Pwn2Own hacking contest, demonstrating exploits against the top four Web browsers, plus Adobe Reader and Flash Player. On Thursday, the second and final day of the competition, the star of the show was South Korean security researcher JungHoon Lee, aka "lokihardt," who ...

A secure version of user.js to harden Firefox installations

Sunday, December 21st, 2014

Warning: Backup your existing user.js file (if it exists) and use with caution.  Some website functionality may break. Some of the settings in this user.js file might seem redundant, as some of them are already set to the same values by default. However, the user.js file has this nice property, that ...

All major browsers fall during second day at Pwn2Own hacking contest

Friday, March 14th, 2014

Security researchers demonstrated zero-day exploits against Google Chrome, Microsoft Internet Explorer, Apple Safari, Mozilla Firefox and Adobe Flash Player during the second day of the Pwn2Own hacking competition Thursday, racking up total prizes of US$450,000. A team from French vulnerability research firm Vupen hacked Google Chrome by exploiting a use-after-free vulnerability ...