Mozilla
Monday review - the hot 24 stories of the week
In case you missed any recent stories, here's everything we wrote in the last seven days.
SSCC 106 - US DoD and BYOD, "scanner" malware, 2FA, and browser wars revisited [PODCAST]
For your listening pleasure, here's the latest episode in our popular "Chet Chat" series.
Senior Security Advisor Chester Wisniewski discusses the latest security news with regular guest Paul Ducklin in an entertaining and easily-digested quarter-hour podcast.
Google announces brand new web browser core, so does Mozilla
When you wait ages for a bus, and then three come along at once, it's not a coincidence: it's a side-effect of queuing and traffic lights.
But what about when three browser vendors make announcements on the same day?
Apple and Mozilla - 'Just say no to Java'
After the recent discovery of a zero-day vulnerability in Oracle's Java Web Start plugin Apple and Mozilla are now disabling Java by default until fixes are made available.
Firefox 18 brings TURKTRUST update, Retina support, faster JavaScript - oh, and 20 other security fixes
Firefox 18 has landed: 2917 bugs patched, 21 security fixes, 12 critical.
Also with a brand-new JavaScript compiler and support for Retina displays on the groovier sorts of Mac.
Firefox 17 arrives - 2365 bugs zapped, OS X Leopard left behind
Firefox 17.0 is out.
The new version fixes an officially-listed 2365 bugs and covers six critical advisories. It also drops support for OS X Leopard and earlier.
Firefox 17 protects your privacy while enhancing the Facebook experience
The latest beta release of Mozilla's popular Firefox browser has introduced a new social media API. Can a web browser make it easier to use social media while protecing your privacy? Mozilla hopes so.
Firefox 15 released: Seven critical vulnerabilities patched and stealthy updates too!
The latest version of the Firefox browser fixes a critical security hole Naked Security reported on in June, and makes the browser’s silent update feature even stealthier.
Anatomy of a bug: latest Firefox 'new tab' feature thumbnails HTTPS pages
The latest release of Firefox has been called "unlucky version 13" because it creates web page thumbnails even of secure content, sparking privacy fears.
But is this really a bug? And if so, do any of the "fixes" circulating online actually work? Paul Ducklin finds out.
PayPal starts bounty program for security bugs
If you've found a security issue with PayPal, you could receive a monetary reward for informing the firm responsibly.
Firefox to introduce click-to-play option to protect against dangerous plugins
Mozilla developer Jared Wein is introducing a new security feature to Firefox 14 called click-to-play. Plugins will not load automatically when visiting websites using things like Flash and Java requiring the user to click before the content is loaded. This could prevent many common drive-by attacks on the web.
Privacy concerns over popular ShowIP Firefox add-on
A popular Firefox add-on appears to have started leaking private information about every website that users visit, including sensitive data which could identify individuals or reduce their security to a third-party server.
Another certificate authority issues dangerous certficates
Mozilla has revoked the signing privileges of another certificate authority for issuing weak and incomplete SSL/TLS certificates.
Firefox 7 security fixes, http vs https and data collection
Mozilla has released Firefox 7, the latest incarnation of their popular web browser.
Recently Firefox has been getting through new version numbers faster than a fat man chasing a ice cream van.
Firefox 6.0.2 fixes yet more DigiNotar certificate fallout
Firefox 6.0.2 has just come out, blocking even more browser certificates than Firefox 6.0.1, in yet more fallout from the mess caused by disgraced Dutch web security company DigiNotar.
Firefox 6 is out - several critical security fixes and one cool new featurette!
Firefox 6 is out. This is the second under Firefox's new 'single-line railway track with regular stations' development and release regimen.
Mozilla's security advisory page wrongly denotes this as low impact; in fact, it fixes several critical vulnerabilities.
Fake Firefox update email - don't click, or you may have your passwords stolen
Have you received an email about an update for Firefox?
Read this before you click on the link - your passwords might depend on it!
Facebook to start paying security bug bounties
Facebook is the most recent company to come to the bug-bounty party, officially announcing that "to show our appreciation for our security researchers, we offer a monetary bounty for certain qualifying security bugs."
Payouts start at US$500. Tempted?
Firefox out-of-band update, this time for Mac users only
Mozilla released an update to Firefox 5 yesterday - but for Mac users only.
This takes Mac users of the popular browser to version 5.0.1. Everyone else stays at 5.0.
Firefox releases Version 5; five remote code vulnerabilities fixed
Mozilla met its promise by getting Firefox 5 out by the solstice. But finding out exactly what's changed, and whether you need to update, isn't as easy as you might like.
Paul Ducklin ferrets out the security fixes so you don't have to.
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
![Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]](http://sophosnews.files.wordpress.com/2013/03/cursors-thumb.jpg?w=75&h=75&crop=1)
