Mozilla Patches Firefox Critical Flaw Under Active Attack
Mozilla has issued a patch for a critical security flaw affecting Windows, macOS and Linux versions of the popular Firefox browser. Threat actors have already begun exploiting the vulnerability, tracked as CVE-2019-11707, in targeted campaigns in order to take over machines running the vulnerable browser.
The flaw was found on June 17 by Coinbase, which says it was being exploited in a spear phishing campaign. Mozilla patched the issue within 24 hours after Coinbase reported it, and is urging Firefox users to install the fix as soon as possible.