Join the Mozilla’s Test Days event from 9–15 Jan to test the new Firefox address bar on Firefox Beta 135 and get a chance to win Mozilla swag vouchers! 🎁

Avatar for Username

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

이 쓰레드는 보존되었습니다. 만약 도움이 필요하시면 새로운 질문을 올려주세요.

Here is a website hosting the firefox-patch.js malware file

  • 2 답장
  • 1 이 문제를 만남
  • 2 보기
  • 최종 답변자: James

Swim222
Swim222
more options

Here is a website (or maybe the only site) hosting the "firefox-patch.js" malware file. It is coming up through "adchoices" adverts but is coming up on many random webpages like Yahoo Mail, eBay and others. Here's the website...

https://uxeezdirecta.org/2021220068217/2c007c89cc3bee49145b5847049b955d.html

I wish you could "fix" firefox so that some malicious website can't try to automatically try to download files onto our PC's. We don't even have to click on anything on the webpage and a webpage comes up saying "Your FireFox needs to be updated." And we're asked to save and run the "firefox-patch.js" file. As far as I know this attack isn't possible with Chrome. Why can they exploit FireFox but not Chrome?

Here is a website (or maybe the only site) hosting the "firefox-patch.js" malware file. It is coming up through "adchoices" adverts but is coming up on many random webpages like Yahoo Mail, eBay and others. Here's the website... https://uxeezdirecta.org/2021220068217/2c007c89cc3bee49145b5847049b955d.html I wish you could "fix" firefox so that some malicious website can't try to automatically try to download files onto our PC's. We don't even have to click on anything on the webpage and a webpage comes up saying "Your FireFox needs to be updated." And we're asked to save and run the "firefox-patch.js" file. As far as I know this attack isn't possible with Chrome. Why can they exploit FireFox but not Chrome?

모든 댓글 (2)

the-edmeister
the-edmeister
  • Moderator
more options

Yes, Chrome is affected by that potential exploit.

To block it in Firefox use the uBlock Origin extension. https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/

James
James
  • Moderator
  • Top 10 Contributor
more options

Swim222 said

As far as I know this attack isn't possible with Chrome. Why can they exploit FireFox but not Chrome?

The same group or persons is doing this to Google Chrome users on Windows also with the same sites being used but with a different background and files being served. One of many threads on this for Chrome is at https://productforums.google.com/forum/#!topic/chrome/HcXgFFaO9WU