Become a MacRumors Supporter for $25/year with no ads, private forums, and more!
  • Did you order new AirTags? We've opened a dedicated AirTags forum.

MacRumors

macrumors bot
Original poster
Apr 12, 2001
52,457
14,153



The United States Cybersecurity and Infrastructure Agency (CISA), part of the Department of Homeland Security, this week urged customers who are using the Firefox browser to upgrade to version 72.0.1, as there is a major vulnerability in older versions of the Firefox browser.

firefoxbrowser-800x450.jpg

Mozilla released Firefox 72.0.1 on Wednesday to address a security issue that allows malicious entities to run unauthorized code on a target computer through a webpage, letting them take control of an affected system. From Mozilla:
Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw.
As the above quote states, there are known targeted attacks exploiting this flaw, which means it's important for all Firefox users to upgrade, including enterprise users.

The vulnerability was first discovered by Chinese company Qihoo 360 two days after the release of Firefox 72, but there is no word on how long the bug has been exploited nor who used the vulnerability or who might have been targeted. This is the third zero-day vulnerability that Mozilla has addressed within the last year, with the company patching two other major vulnerabilities in June 2019.

MacRumors readers who use Firefox for Mac but have not installed the latest version should make sure to do so. The latest version of Firefox can be downloaded from the Mozilla website or through the update function within Firefox itself.

Article Link: U.S. Department of Homeland Security Urges Firefox Users to Install Update Amid Active Attack
 

katbel

macrumors 6502a
Aug 19, 2009
806
505
Homeland security ?! Shouldn't the advisory come from some other sources too?
 
Comment

sw1tcher

macrumors 68020
Jan 6, 2004
2,146
3,729
The United States Cybersecurity and Infrastructure Agency (CISA), part of the Department of Homeland Security, this week urged customers who are using the Firefox browser to upgrade to version 72.0.1, as there is a major vulnerability in older versions of the Firefox browser.

Correction: Firefox ESR 68.4.1 has fixes too, not just 72.0.1
 
Comment

coolfactor

macrumors 603
Jul 29, 2002
5,002
5,422
Vancouver, BC
Let's face it, all of todays "modern" browsers are fantastic. Choosing one or another is personal preference and based on loyalty, not so much based on performance or functionality.

Firefox started out as a lean, mean browser, but became very bloated and slow over the years, feeling less and less "native" on macOS. Then they had a course correction and it finally feels like it belongs on macOS again. Chrome has always been a close cousin to Safari.

I've also used Opera, Brave and Vivaldi, but I keep coming back to Safari as my primary go-to browser. I just prefer its "look and feel" slightly better than the others. It feels the most "at-home" browser to me. But I do use other browsers for different purposes. macOS Keychain integration is a huge factor for me for choosing Safari.
 
Comment

Hustler1337

macrumors 68000
Dec 23, 2010
1,795
1,531
London, UK
Let's face it, all of todays "modern" browsers are fantastic. Choosing one or another is personal preference and based on loyalty, not so much based on performance or functionality.

Firefox started out as a lean, mean browser, but became very bloated and slow over the years, feeling less and less "native" on macOS. Then they had a course correction and it finally feels like it belongs on macOS again. Chrome has always been a close cousin to Safari.

I've also used Opera, Brave and Vivaldi, but I keep coming back to Safari as my primary go-to browser. I just prefer its "look and feel" slightly better than the others. It feels the most "at-home" browser to me. But I do use other browsers for different purposes. macOS Keychain integration is a huge factor for me for choosing Safari.

I switched to Firefox after using Chrome for many years. Whilst I find Firefox much less resource-hungry compared to Chrome, I've noticed that a lot of webpages fail to function correctly because of Firefox's aggressive blocking of scripts, trackers and other protection measures.

It gets quite frustrating and means I have to revert to Chrome for the websites that don't work.
 
Comment

Bandaman

macrumors 65816
Aug 28, 2019
1,094
2,044
I switched to Firefox after using Chrome for many years. Whilst I find Firefox much less resource-hungry compared to Chrome, I've noticed that a lot of webpages fail to function correctly because of Firefox's aggressive blocking of scripts, trackers and other protection measures.

It gets quite frustrating and means I have to revert to Chrome for the websites that don't work.
Brave is a much better alternative to Chrome.
 
Comment
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.