Mozilla removes popular Firefox add-ons used by nearly a million people
Mozilla’s Firefox browser team has cracked the whip on malicious add-ons, blocking access to them despite their large user base of about 455,000 installations.
Mozilla hasn’t shared what led them to the offering software, but its developers discovered that the malicious add-ons were misusing the proxy API in the popular web browser, which helps govern how it connects to the internet.
In a blog post, Mozilla’s Rachel Tublitz and Stuart Colville explain that the add-ons misused the proxy API to interfere with the browser’s update functionality, in essence preventing users of the add-ons from downloading updates for the browser, and even prevented them from accessing updated blocklists, and updates to any remotely configured Firefox content.
As soon as it discovered the ploy, Mozilla zapped the add-ons, and also paused approvals for any add-ons that relied on the proxy API, in order to prevent them from blocking updates for users, until a fix was available.
Malicious intent
BleepingComputer identified the offending add-ons as Bypass and Bypass XM, while revealing that they were likely using a reverse proxy to bypass paywalled sites.
The fix came shipped with Firefox 91.1, which as per the developers will now fall back to establishing a direct connection to the internet for any important request (such as for an update) in case going through the proxy configuration fails.
Furthermore, the developers note that they’ve also deployed a new system add-on named “Proxy Failover” that includes additional mitigations, to both current and older Firefox releases.
In the post, the developers urge users to make sure they are using the latest Firefox release, while also suggesting a best practice for web developers who want to make use of the proxy API in their add-ons to expedite reviews.
“We take user security very seriously at Mozilla. Our add-on submission process includes automated and manual reviews that we continue to evolve and improve in order to protect Firefox users,” conclude the duo.
Mozilla’s Firefox browser team has cracked the whip on malicious add-ons, blocking access to them despite their large user base of about 455,000 installations. Mozilla hasn’t shared what led them to the offering software, but its developers discovered that the malicious add-ons were misusing the proxy API in the popular…
Recent Posts
- Ecobee’s Smart Thermostat Premium is nearly matching its all-time low
- The 9 best early Memorial Day TV deals: up to $1,000 off 4K, QLED and OLED TVs
- iPad Pro 2024 teardown video reveals some of Apple’s internal design changes
- X-Men ‘97 didn’t have to go that hard
- Razer Fujin Pro Gaming Chair Review: Giving My Back an Extra Life
Archives
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- November 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- November 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- December 2019
- November 2019
- December 2011