[Security Alert] Update Firefox Browser Now as Hackers Exploit a Serious Bug Targeting Major Crypto Exchanges Users

Mozilla has issued a security alert warning that hackers are taking advantage of a serious bug in their Firefox browser, which can be used to take over the entire computer.

The company has warned that crypto owners face the highest level of an imminent attack, the Next Web reports. Firefox users have been asked to patch their browsers.

On Tuesday, Mozilla's security team warned about a critical “type confusion vulnerability” in the Firefox browser when it processes certain Javascript code. The company's security advisory stated:

“This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw.”

The company did not divulge more details about the bug. So it still remains mysterious how the hackers have been exactly launching their attacks.

However, since the vulnerability involves processing Javascript, this may mean the bug can be triggered when visiting a malicious website or link.

Security Researchers Discover the Bug

The discovery of the bug was credited to a security researcher attached to Google Project Zero security team, Samuel Groß as well as Coinbase security team.

Groß claimed that he reported the bug about two months ago on April 15. In a tweet, the researcher explained that the initial public fix came about a week ago. He explained:

“I found and then reported the bug on April 15 but the first public fix then landed about a week ago.”

Groß explained that the delay in fixing the vulnerabilities could have been occasioned by need to have the next full release ready for launching as Firefox fixes its flaws by releasing a new version.

As per Groß’s explanation, hackers can exploit the bug for RCE [remote code execution. However, they would be required to meet various conditions. In most instances, RCE allows attackers to wholly take control of a specific web server.

Based on who reported the security flaw, it can safely be assumed that the security flaw was being exploited in attacks aimed at cryptocurrency owners. Groß also indicated that he did not have details about how the zero-day was used, and said that Coinbase Security could offer more details about the in-the-wild attacks. Groß explained further:

“However, most likely it can be exploited for [Universal Cross-Site Scripting (UXSS) attacks] which might be enough depending on the attacker’s goals.”

In most instances, UXSS attacks results to loss of vital data and information like login details, passwords as well as important credentials.

At the moment, there are precise details have been made public on how the bug has been used by unscrupulous individuals.

The US Cybersecurity and Infrastructure Security Agency has also issued an advisory, which warns, an attacker could exploit this vulnerability to take control of an affected system. Mozilla users have been advised to update their browsers to avoid any attack.

Do you think hackers have already exploited the Mozilla bug to steal cryptocurrencies from unsuspecting crypto owners? Let us know in the comments section.

Get Free Email Updates!

*Action* Enter Best Email to Get Trending Crypto News & Bitcoin Market Updates

I will never give away, trade or sell your email address. You can unsubscribe at any time.

Joseph Kibe
Joseph Kibe
Joseph is a blockchain and cryptocurrency enthusiast, with a strong conviction that exposure of blockchain technology is for the good of the society. Fascinated by the massive potential of cryptocurrencies and the technology behind them – blockchain – Joseph spent lots of his time learning more about the industry, becoming a polished expert writer in the sector. He covers any cryptocurrency and blockchain related content.

[Alert] Use the author's self-conducted information at your own risk, do you own research, never invest more than you are willing to lose.

[Disclosure] The published news and content on BitcoinExchangeGuide should never be used or taken as financial investment advice. Understand trading cryptocurrencies is a very high-risk activity which can result in significant losses. Editorial Policy \\ Investment Disclaimer


Please enter your comment!
Please enter your name here


Live Bitcoin Price & Latest BTC Charts

Today's Latest Crypto News

BitcoinExchangeGuide is a hyper-active daily crypto news portal with care in cultivating the cryptocurrency culture with community contributors who help rewrite the bold future of blockchain finance. Subscribe on Google News, see the mission, authors, editorial links policy, investment disclaimer, privacy policy. Got News? Contact us, we are human too. Note: nothing here is financial advice, do your own research thoroughly.

Start Using Crypto Today