Firefox – Rainbow, a new extension of Mozilla Labs
If the display of multimedia content on the Internet has made considerable progress since the advent of HTML5, can not be said for the audio and video on the Web.
This was the observation that motivated the development of a new extension for Firefox by a team of Mozilla Labs, the R & D laboratory Mozilla responsible for initiating several innovative projects which are then integrated into the browser
Mozilla fixed in 48 hours the exploit in Firefox 3.5 and 3.6
It only took 48 hours for the Mozilla Foundation released a security patch following the discovery of a flaw in its browser, which allowed a takeover of the attacked machine.
The flaw was exploited from the site of the Nobel Peace Price site, which itself had been mysteriously hacked.
Firefox was the only browser that is visibly affected by this attack (see above).
Today, the Foundation has released two patches, one for each version of Firefox (3.5 and 3.6) affected by the exploit.
Everything is back to normal.
Hats off to a reaction rate too fast?
Firefox: an hacking extension poses problems
A Firefox extension, dubbed Firesheep, is in fact a usurper of cookies. It was downloaded 104,000 times in 24 hours between curious and ... malicious.
The extension allows anyone to retrieve identifiers (then use to connect) to the accounts of users connected via a Wi-Fi not secure a site that does not use secure HTTPS connections. Among them there are many popular sites including Facebook and Twitter
Firesheep was developed by Eric Butler to the attention of major players in the web, including social, on a latent lax in terms of secure identification.
And it worked. Too well, this developer independent American states on his blog that he does not expect that "Firesheep" arrived in the Top 10 most popular Google queries in the United States.
Butler explains that on a wifi network is not secure, cookies may not be encrypted and are easy to intercept. It is therefore easy to copy in their browser and impersonate someone else.
A method that automates the extension and makes it very easy.
If it does not directly have the password for the user, it nevertheless opens the door to a multitude of flight information, refer to conduct banking transactions.
This video explains the workings of this image feat:
A 12 years old hacker found a critical flaw in Firefox
In the series' value does not expect the number of years "after the young girl of 16 who is developing a site for the British government, this is the hacker of 12 years is a critical flaw in Firefox.
And pocketing $ 3,000 in the passage provided by the Mozilla Foundation for any contributor who help significantly to improve the security of its browser.
Alex Miller is a young boy from San Jose (Calif.) computer enthusiast. Passionate but not insensitive to the gains.
When Mozilla has decided to multiply by six the reward for the discovery of a significant vulnerability, the young prodigy has made up his mind to win the award.
His initial analysis led him to find some flaws, minor, insufficient to receive the jackpot.
Stubborn, Alex Miller continues his research for 10 days at an hour and a half per day, until he uncovers a flaw in the use of application memory.
Tracking down bugs is not easy. Very technical, it concerns only a small community of developers, says essentially Brandon Sterne, head of security at Mozilla, about Alex Miller.
An annoying boy ?
Source : Mercury News
Xmarks available for iPhone, iPod Touch and iPad
I'm sure that you know Firefox's addon called Xmarks. It allow you to synchronize your bookmarks with other browsers (as Safari, etc.).
Now you can use it on you Apple mobile device to get your bookmarks and use them with Safari Mobile.
Available on the AppStore for $0,99.
I got it and I'm a fan !!
Source : Xmarks official site
Certificates
Categories
- Ansermot.ch (13)
- Community (99)
- Development (258)
- Misc (24)
- Projects (23)
- Bullet Proof Lib (4)
- FireStats Charts (12)
- WordPress Blog Farmer (4)
- WP Page Qr (3)
- Social (27)
- System (114)