Mozilla and Tor Release Urgent Update for Firefox 0-Day Under Active Attack

Mozilla and Tor have introduced browser updates to sum up a Firefox consistence being hampered to identify men who sue the services related to privacy. It is a flaw in terms of security for the immediate release, which is being exploited on Windows. The official of Tor has assured their users that there isn’t any risk currently figured out in their knowledge. They are unable to discover any exploits for Operating System X or Linux as they have implanted several security measures. But still they have insisted the users to go for the update of their Tor Browser as soon as possible.

The Tor browser is said to forged on the Firebox browser which is an open source introduced by the Mozilla foundation. No sooner did the Officials of Mozilla named Daniel Veditz came to know of this problem, he posted on his blog assuring that the issues has been fixed in some currently issued versions of Mozilla Firefox for all the popular users. He further disclosed that the attack code has been discovered who did the exploitation and measures are being taken against it.

The mishap revealed codes when the targets fed malicious JavaScript related to vector graphics. The culprit sent the IP and MAC address of the target to the server, which controlled attacks. The code resembled the technique which investigated network used by law-enforcing agencies, specially that which identified Tor-protected users who seemed to propagate child pornography.

Further similar step was taken in this regard and it was discovered this vulnerability reducing measure was created by FBI or some law-implementing agency. This shows that how restricted government hacking can become a serious threat to the larger web as anyone can use it to attack Firefox users. A different Mozilla security has proved that it can also affect Mozilla’s Thunderbolt e-mail applications and also the extended support version of Firefox used by Tor browsers. It was suggested that this flaw existed in the browser since five years.

The ridiculous load given by the exploit of code-execution is very much similar to that of FBI which it used in 2013 to discover the ones who used trade child pornography via Tor-anonymized website. The source code to the Tor group was absolutely complete, the exploit could be made easily available to lots of people which they manage to use by making slight changes to it.

Other than an update for Firefox an update to NoScript, which is an extension of Firefox in relation to the Top Browser was also released. NoScript is useful, as it does not allow the users to opt for the sites that can and cannot use JavaScript in the browser. Later for privacy reasons the Tor browser installed NoScript in such a manner that permitted all sites to affiliate JavaScript in the browser. Though this point in terms of privacy is still not clear.

It is advisable that the Firefox and Tor users should fix their problems at once. The users are considered to be protected from the attack by keeping the Firefox security to highest level, that may restrict few sights but it is proven safe.

Firefox Disables Loophole That Allows Sites to Track Users via Battery Status

We are living in a society, where the science and technology have taken a great leap forward and developed the most outstanding invention of the computer and the internet, which have now become such an issue that a little bit of touch of these can be seen in almost everywhere in our life.

The web surfing in the computer or other devices, with the help of the internet, is a very common issue in our life and people of almost all color, class, nationality are now accustomed with these technological advances, which cannot be avoided, due to its useful characteristics. To cater the web world, the user needs to take the help of a browser that can play the role of perfect vehicle in surfing process.

The Firefox is one such browser, which is considered as one of the most popular ones and being used by millions of internet enthusiasts, across the world. It is popular, not only for the colorful look or name but for the user-friendly features, which are time to time developed by a strong professional team. Recently Firefox disabled one of its features, considered as a loophole because it allows various websites to track the specific user through the status of the battery use.

The Issue at a Glance

The battery status feature of the Firefox is having some loopholes and these are now being fixed or disabled by the organization to provide a sigh of relief for its millions of users from being opened to the users, who want to get the details of the internet user. Some of the features of this fixing of loopholes are as follows: 

•  The said feature is known as “battery status API’ that allows various websites to request information about what amount of battery life has left of a specific visitor and these are; whether the device is plugged in or not, what time the battery will take to be exhausted and the percentage of remaining charge. 
•  The browser is having the features that were helpful for websites to offer some of the lesser energy sensitive versions sites for their visitors, who are having less battery power remaining e.g. a mapping site may download a smaller amount of information or a social networking website could put out of action its auto-playing video. 
•  Only in 2015, the Guardian, renowned newspaper of international repute, reported with various instances that researchers have discovered that someone can easily abuse the specific feature, which may helpful in tracking down the browsing on the internet. 

Now Firefox has disabled this battery status feature in a bid to help their potential users to get rid of the problem of getting tracked by other sites, which is a great threat to their personal security and dignity. Although they have already repaired this loophole, there are others in the market of browsers, who are now considering of repealing some of their features, which may help the internet lovers to get proper immunization from internet threat of being tracked by any websites or personnel of questionable identity.

Mozilla Firefox 48 Out Now with Multi-Process Electrolysis

Firefox 48 –Designed to Enhance Stability/Security

Firefox 48, after seven years of progress is eventually enabling a multi-process feature which is similar to what Internet Explorer as well as Google Chrome has been offering as stable feature from 2009. Firefox 48 has recently shipped two long anticipated new features which have been designed to enhance the stability as well as security of the browser. Running their rendering engines in a distinct procedure from the browser shell, IE and Chrome have been steadier as well as secure.

To bring about a similar multi-process competence to Firefox, Mozilla had begun in 2009, the Electrolysis project, but the organization had taken longer than Apple, Google and Microsoft in shipping this feature. The delay of Mozilla was partially driven by altering importance in the organization and Electrolysis progress had been on hold in 2011 before it was restarted in 2013 and partly due to the historic extension architecture of Firefox which made this type of split-up difficult to accomplish. The old extensions of Firefox invasively tend to interfere with fragments of the browser and several assumed equal access to the rendering engine as well as to the shell of the browser.

Rollout of Electrolysis Controlled Conventionally

The developers of Firefox had to create a new extension system as well as create shim layers to provide the developers with a temporary system to continue assisting their old extensions. The multi-process system of Firefox even after all this time does not seem to match its peers. The roll out of Electrolysisis being controlled conventionally in spite of its successful beta. It is said that for the next few days, a part of a percent of Firefox 48 users by default would have Electrolysis turned on.

If this rollout turns to go well, the multi-process feature would be roll out to around half of all the users of Firefox 48 and would be prolonged in handling extensions which are known to be compatible in Firefox 50. Thereafter Electrolysis will be rolled out to the users of Firefox 51 with touchscreen devices, right-to-left languages as well as disable accessibility software thus making it accessible to most of the users of Firefox.

Rust Language of Mozilla – Similarity of Performance

The multi-process feature of Firefox still tends to fall short of what Chrome, Edge and Safari do, since it would be utilising an individual process for each tab. The other browsers employs one process for single tab which means that not only does a crash in the renderer seems to guard the browser shell, but also averts any contagion between tabs where one tab crashing seems to cause another one to perish.

Moreover, it also stops any leakage of data between tabs and provision for one process for each tab is presently due to be available in the first half of 2017. Once this has been accomplished, the extensions would be moved to single processes as well. Rust language of Mozilla is said to be designed to give the similarity of performance as well as control as C++ though minus the weakness of the C++ to security errors.
Rust code has been developed by the company to replace the C++ code which tends to presently handle difficult media formats and this replacement code is being shipped in the stable version of Firefox 48.

Web Browser Introduces Built-in Ad-Blocker

Opera Presented Built-in Ad-blocking Feature

Opera, a software company has presented a built-in ad-blocking feature in its internet browser that would enable users to surf the web without viewing ads that would be depriving websites of its revenue. The software company had announced the feature recently stating that the tool would enable users the option of choosing to block ads from a particular website or not, at the time of browsing the internet. The company also states that utilising the ad blocker on its browsers would load web pages 90% quicker than using Internet Explorer and 45% faster than using Google Chrome with ad-blocker extension.

According to web analytics service StatCounter, about 5% of the internet browsing is done by using Opera. Google Chrome in comparison seems to be the most used browser with 45% of action. The company had explained in a blog post, the reasons for the introduction of the tool was to progress the consumer experience and send messages to advertisers that the internet ads seem to be too big and disturbing. Krystian Kolondra, senior vice president of global engineering for Opera had mentioned in a blog post that `presently bloated online ads use more download bandwidth causing webpages to load slowly, at time covering the content that one is trying to see or trying to trick into clicking `fake download buttons’.

NY Times Tested System due to Rising Response of Ad-Blocking

He added that another rising concern was privacy and tracking of online behaviour. Though ad-free browsing tends to be faster and much more convenient for web users, websites seem to end up paying a price.By default, ad-blocker is activated but when a page with adverts tends to get loaded, a pop-up seems to appear prompting if one would like to block ads and surf the web faster.

If the blocking is turned on, users will be able to view how much load time has been saved. They could also add some sites to an exception list enabling adverts to run if they choose to support. As per a report by PageFair and Adobe, ad-blocking charge digital publishers an estimated $22 billion by way of revenue in 2015 with about 198 million people all over the world utilising the software. Due to the rising response of ad-blocking, the New York Times had started testing a system recently which identified visitors to the news site utilising ad-blocker, asking them to buy a subscription or whitelist the site.

Opera had followed Samsung and mobile phone Company `Three’ in employing ad-blocking services. Earlier, users had to download and install ad-blocking software. As per Eleni Marouli, senior analysts at HIS Technology, a trend of telecom companies are attempting to be included in the mobile advertising ecosystem.Marouli mentioned in a report that `Telcos have traditionally been just data `pipes’ that provided the infrastructure for mobile internet and hence mobile advertising.

They had attempted to monetise content through advertising but had made little progress in claiming significant market share’. She further added that the ad blocking announcement by `Three’ had been a pleas to companies such as Facebook and Google to include Three and other mobile operators in the mobile advertising value chain. The feature is said to be available in the latest version of the developer browser and if the test tends to be successful, it would make it to the regular version.