NGINX Controller API Management vulnerability CVE-2022-23008 Security Advisory Security Advisory Description An authenticated attacker with access to the "user" or "admin" role can use undisclosed ...
More info:
https://support.f5.com/csp/article/K57735782?utm_source=f5support&utm_medium=RSS
Starting with version 90, Firefox will automatically find and offer to use client authentication certificates provided by the operating system on macOS and Windows. This security and usability improvement … Read moreThe post Making Client Certificates Available By Default in Firefox 90 appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/07/28/making-client-certificates-available-by-default-in-firefox-90/
We are excited to announce that, starting in Firefox 91, Private Browsing Windows will favor secure connections to the web by default. For every website you visit, Firefox will … Read moreThe post Firefox 91 introduces HTTPS by Default in Private Browsing appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/08/10/firefox-91-introduces-https-by-default-in-private-browsing/
We are pleased to announce a new, major privacy enhancement to Firefox’s cookie handling that lets you fully erase your browser history for any website. Today’s new version of Firefox … Read moreThe post Firefox 91 Introduces Enhanced Cookie Clearing appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/08/10/firefox-91-introduces-enhanced-cookie-clearing/
To provide transparency into our ongoing efforts to protect your privacy and security on the Internet, we are releasing a security audit of Mozilla VPN that Cure53 conducted earlier this … Read moreThe post Mozilla VPN Security Audit appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/08/31/mozilla-vpn-security-audit/
Downloading files on your device still exposes a major security risk and can ultimately lead to an entire system compromise by an attacker. Especially because the security risks are … Read moreThe post Firefox 93 protects against Insecure Downloads appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/10/05/firefox-93-protects-against-insecure-downloads/
As part of our continuing work to ensure that Firefox provides secure and private network connections, it periodically becomes necessary to disable configurations or even entire protocols that were once … Read moreThe post Securing Connections: Disabling 3DES in Firefox 93 appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/10/05/securing-connections-disabling-3des-in-firefox-93/
Add-ons are a powerful way to extend and customize Firefox. At Mozilla, we are committed not only to supporting WebExtensions APIs, but also ensuring the safety and reliability of the … Read moreThe post Securing the proxy API for Firefox add-ons appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/10/25/securing-the-proxy-api-for-firefox-add-ons/
We are happy to announce that the Firefox 93 release brings two exciting privacy improvements for users of Strict Tracking Protection and Private Browsing. With a more comprehensive SmartBlock 3.0, … Read moreThe post Firefox 93 features an improved SmartBlock and new Referrer Tracking Protections appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/10/05/firefox-93-features-an-improved-smartblock-and-new-referrer-tracking-protections/
In keeping with our commitment to the security and privacy of individuals on the internet, Mozilla is increasing our oversight and adding automation to our compliance-checking of publicly trusted intermediate … Read moreThe post Improving the Quality of Publicly Trusted Intermediate CA Certificates with Enhanced Oversight and Automation appeared first on Mozilla Security Blog.
More info:
https://blog.mozilla.org/security/2021/12/09/improved-quality-of-intermediate-certificates-with-enhanced-oversight-and-automation/
