PogoWasRight.org

Menu
  • About
  • Privacy
Menu

Firefox 14 tabs no longer sneak a peek at users’ privates

Posted on July 20, 2012 by pogowasright.org

John Leyden reports:

Mozilla has plugged a privacy-related security hole in Firefox 13 and released a fixed version of its web browser. The flaw allowed the software’s speed-dial-alike “new tab” feature to take snapshots of supposedly secure HTTPS sessions.

Punters sounded the alarm over the feature that, for example, revealed online bank account details or private messages in webmail sessions to the next user of a shared PC. Mozilla quickly acknowledged the behaviour was undesirable and issued a workaround and privacy advice in early June.

Read more on The Register.

Which reminds me: while waiting in a graduate student lounge at my daughter’s university recently, I noted that the university had configured the computers to use Firefox 3.6. No one updates or patches those computers? C’mon, folks….

Category: BreachesOnline

Post navigation

← DSEJ accused of sponsoring privacy-infringing IT course
In the midst of a tragedy, privacy still matters →

Now more than ever

Search

Contact Me

Email: info@pogowasright.org

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

Categories

Recent Posts

  • License Plate Reader Company Flock Is Building a Massive People Lookup Tool, Leak Shows
  • FTC dismisses privacy concerns in Google breakup
  • ARC sells airline ticket records to ICE and others
  • Clothing Retailer, Todd Snyder, Inc., Settles CPPA Allegations Regarding California Consumer Privacy Act Violations
  • US Customs and Border Protection Plans to Photograph Everyone Exiting the US by Car
  • Google agrees to pay Texas $1.4 billion data privacy settlement
  • The App Store Freedom Act Compromises User Privacy To Punish Big Tech

RSS Recent Posts on DataBreaches.net

  • Turkish Group Hacks Zero-Day Flaw to Spy on Kurdish Forces
  • Cyberattacks on Long Island Schools Highlight Growing Threat
  • Dior faces scrutiny, fine in Korea for insufficient data breach reporting; data of wealthy clients in China, South Korea stolen
  • Administrator Of Online Criminal Marketplace Extradited From Kosovo To The United States
  • Twilio denies breach following leak of alleged Steam 2FA codes
©2025 PogoWasRight.org. All rights reserved.
Menu
  • About
  • Privacy