Mozilla Archives

Winsage

March 8, 2025

Nearly 1 million Windows devices targeted in advanced “malvertising” spree

A recent cyber campaign targeted nearly 1 million devices across various sectors, using GitHub as the primary platform for hosting malicious payloads, with Discord and Dropbox also involved. The malware exfiltrated sensitive information from infected systems, including critical browser files that store login cookies, passwords, and browsing histories. Compromised files included specific SQLite and JSON files from Mozilla Firefox, Google Chrome, and Microsoft Edge, as well as files stored on Microsoft's OneDrive. The malware also targeted cryptocurrency wallet applications like Ledger Live and Trezor Suite. Microsoft identified that the domains hosting malicious advertisements were linked to unauthorized streaming platforms. Microsoft Defender has been updated to detect the attack-related files, and guidance has been provided for those who may have been affected.

Winsage

March 6, 2025

Firefox users slam Mozilla over controversial data privacy update — while ironically using “the biggest data-mining operating system in the world (aka Microsoft Windows)”

Mozilla faced backlash from Firefox users over an update to its developer's Terms of Use, which included a clause allowing Mozilla to utilize user data. Users expressed concerns about data privacy due to the language stating a "nonexclusive, royalty-free, worldwide license" for user content. In response, Ajit Varma, VP of Firefox Product, clarified that the license was necessary for basic functionalities and did not imply ownership of user data. Despite attempts to address concerns, users remained unsettled, particularly due to changes in the FAQ section that altered Firefox's stance on selling personal data. Some users speculated that the changes might relate to Mozilla's potential AI initiatives, while Mozilla also criticized Microsoft for its promotion of Edge over other browsers.