logon2 Blog

Recently, a number of Firefox security holes have been found and exploited. The most serious one, involving a rogue JAR file, can give non-google parties to access the information from your google account, according to dailyApps. The type of exploit is a type of XSS or Cross-Site-Scripting attack.

You can protect yourself by sticking to trusted websites and not downloading anything that you don’t trust. dailyApps recommends using the noScript Firefox Extension – a Firefox plugin that blocks ALL scripts from sites that you haven’t personally approved, so as long as you excercise a bit of prudence, you’ll be protected from this and many other vulnerabilities.

Both Google and Firefox have a responsibility to protect their users and so they should be patching this up soon. Until then, keep safe and be responsible.

Maybe we should use two?

Did you like this post?
Send to a friend

This entry was posted on Tuesday, November 20th, 2007 at 07:22 and is filed under Web Browsers. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.