Windows 10: Firefox Add-ons attacked

Page 2 of 3 FirstFirst 123 LastLast
  1. AndreTen's Avatar
    Posts : 14,744
    Windows 10 (Pro and Insider Pro)
       07 Apr 2016 #10

    rezpower said: View Post
    now the question is what addons are safe to use and which addons should be removed exactly!
    Uh, difficult question.
    Second article says "It is not clear whether the flaw has actually affected any users, as the researchers demonstrated it only as a proof-of-concept."

    So, don't panic, but who knows?
      My ComputersSystem Spec

  2. DooGie's Avatar
    Posts : 4,388
    Wndows 10 x64 Home version 1809
       07 Apr 2016 #11

    rezpower said: View Post
    now the question is what addons are safe to use and which addons should be removed exactly!
    My thoughts exactly. The lists don't specifically say what is safe and what isn't.

    Looking at mine I'm only using three extensions at the moment.
    Adblock Plus
    Download Status Bar
    BBCodeXtra
      My ComputerSystem Spec

  3.    07 Apr 2016 #12

    AndreTen said: View Post
    Not using listed? Or you don't use any add-on? Why do you think that those not listed are safe? This affects almost all of them!
    I'm using only 3 that I've been using for years: Ghostery, Hide Tab Bar With One Tab and Status-4-Evar.
      My ComputerSystem Spec

  4. AndreTen's Avatar
    Posts : 14,744
    Windows 10 (Pro and Insider Pro)
       07 Apr 2016 #13

    larc919 said: View Post
    I'm using only 3 that I've been using for years: Ghostery, Hide Tab Bar With One Tab and Status-4-Evar.
    And the cited article wasn't telling, that not listed add-ons are safe. Just that one of the ten most popular isn't affected. Most of the other are not safe either.
      My ComputersSystem Spec

  5.    07 Apr 2016 #14

    From the article, you would need to download a malicious Add-On that would then exploit your already installed add-ons . So not much danger unless you download crap add-ons without reading reviews or otherwise get informed.
      My ComputerSystem Spec

  6. AndreTen's Avatar
    Posts : 14,744
    Windows 10 (Pro and Insider Pro)
       08 Apr 2016 #15

    EricTheO said: View Post
    From the article, you would need to download a malicious Add-On that would then exploit your already installed add-ons . So not much danger unless you download crap add-ons without reading reviews or otherwise get informed.
    I think, that for average user, the most dangerous can be PUPs which you install with other well rated programs. These can be stand alone programs as well as browser add-ons.
    So I can't agree with you, that this is not a problem. Bad guys will always find their way.
      My ComputersSystem Spec

  7.    08 Apr 2016 #16

    AndreTen said: View Post
    Uh, difficult question.
    Second article says "It is not clear whether the flaw has actually affected any users, as the researchers demonstrated it only as a proof-of-concept."

    So, don't panic, but who knows?
    Ars Technica calls it "proof of concept," too. These "proof of concept" articles are always amusing...;) Ever notice how the hackers who who develop these "concepts" (and so give the bad guys new ideas) are called "security researchers," while the guys who actually develop the hacks that the "proof of concept" publicizes are called "malicious hackers"? I see little difference between the two groups. They are all hackers.

    But anyway, as with most "proof of concepts" it is highly unlikely this kind of thing might ever work well because so many elements have to be precisely aligned--elements over which the hacker has no control. There is no "safe" list, etc., because there exists no threat...;) No one has been exploited by this particular concept and may never be, so atm everything is "safe."
      My ComputerSystem Spec

  8. AndreTen's Avatar
    Posts : 14,744
    Windows 10 (Pro and Insider Pro)
       08 Apr 2016 #17

    waltc said: View Post
    Ars Technica calls it "proof of concept," too. These "proof of concept" articles are always amusing... Ever notice how the hackers who who develop these "concepts" (and so give the bad guys new ideas) are called "security researchers," while the guys who actually develop the hacks that the "proof of concept" publicizes are called "malicious hackers"? I see little difference between the two groups. They are all hackers.

    But anyway, as with most "proof of concepts" it is highly unlikely this kind of thing might ever work well because so many elements have to be precisely aligned--elements over which the hacker has no control. There is no "safe" list, etc., because there exists no threat... No one has been exploited by this particular concept and may never be, so atm everything is "safe."
    Agree with the second part, but can't with the first.

    Of course they (good and bad guys) are both hackers. I see your point, but security researchers are not making direct money with security holes they find. This can be some of the most brilliant scientist in their field. They have to publish papers and have to attend conferences. If they don't ... they loose position.

    But security breach that is published is no real threat anymore. Company can fix it. So, there exists both, good and bad guys (hackers).

    Of course, just my opinion :)
      My ComputersSystem Spec

  9. DooGie's Avatar
    Posts : 4,388
    Wndows 10 x64 Home version 1809
       08 Apr 2016 #18

    I think the bad and good hackers are interchangeable really.

    Plenty of black hats get employed by system security companies and become white hats. I must also assume that white hats could also change their colour to black for reasons only known to themselves.

    For now I'm continuing to use Firefox as my main browser until some concrete evidence comes out about extensions.
      My ComputerSystem Spec

  10. Computer Chicken's Avatar
    Posts : 665
    Windows 10 1709 Pro x64 (Fall Creators Update)
       08 Apr 2016 #19

    AndreTen said: View Post
    Scary!
    Agreed
      My ComputersSystem Spec


 
Page 2 of 3 FirstFirst 123 LastLast

Related Threads
Source See also: Latest Firefox Released for Windows - Windows 10 Forums
Firefox 44.0 in Browsers and Email
Install Firefox Ver 44.0. Add-on and Firefox website display text only. Any one having the same problem ?
Solved Firefox 64 is here in Browsers and Email
It looks like Mozilla finally came out with Firefox 64 bit browser, have a look at the links below Firefox 64-bit for Windows Available | Future Releases https://www.mozilla.org/en-US/firefox/all/
Hello, lately I've been having an issue where Windows will open a separate tab for Firefox when i open it with the original pinned icon on my task bar.. I've tried opening firefox and unpinning the pinned shortcut and pinning the opened one and...
Before installing Win 10 preview onto an HDD I disconnect the other bootable drives lest they be molested by the Windows 10 install process. After installing the preview and updating everything I shutdown the PC and re-attach the other HDDs. My...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 15:50.
Find Us