A major vulnerability discovered by Mozilla lurking in an advertisement shown by a Russian news site could steal your files and upload them to a Ukrainian server without you ever knowing.
New York, meet the world’s tech scene
5,000 Tech leaders are coming to NYC this November to learn and do business. This is your chance to join them.
Interestingly, the files it searches for on the local system are mostly developer focused. On Windows, the attack specifically looks for FTP configuration files, subversion, .purple and other account information. On Linux, it looks for global configuration files and user directories.
Mac users aren’t specifically targeted by the attack that was discovered, but wouldn’t be immune if targeted.
The attack doesn’t appear to be widespread right now, having only been spotted on a Russian ad network, but it’s likely only a matter of time until it spreads as more people discover it.
➤ Firefox exploit found in the wild [Mozilla blog]
Image via WallpapersHunt