Friday, September 13, 2024
HomeFirefoxFirefox 70 Released: Added Integrated Breach Alerts, Social Tracking Protection & Fixed...

Firefox 70 Released: Added Integrated Breach Alerts, Social Tracking Protection & Fixed 9 Security Bugs

Published on

Mozilla released Firefox 70 with the fixes for security vulnerabilities that affected the previous version of Firefox and added Enhanced Tracking Protection (ETP) by default.

Mozilla fixed 9 vulnerabilities including one critical severity bug, 3 high severity bug, and 5 Moderate level vulnerabilities.

More Security Protection with  Firefox Lockwise

Firefox password management tool called Lockwise improved with more security protection and allows you to create, update, and delete your logins and passwords to sync across all your devices.

- Advertisement - EHA

Integrated breach protection with Lockwise now alerts you about potentially vulnerable passwords and if it’s exposed in any data breach.

Complex password generation lets you create and save strong passwords for new online accounts.

Social tracking protection, which blocks cross-site tracking cookies from sites like Facebook, Twitter, and LinkedIn, is now a standard feature of Enhanced Tracking Protection.”

More Browser Features

Mozilla added more features including address bar indication for Geo-location when a website uses it.

A stand-alone firefox account menu added that helps users to easily access Firefox services such as Monitor and Send.

Google removed EV indicators Chrome version 77. now Firefox step towards it, starting from Firefox 70 all the green lock icons turned to gray.

Padlock before and After

Improvement with a Core Engine component

Mozilla rolled out the WebRender for Windows users by default on Windows desktops with integrated Intel graphics cards and resolution of 1920×1200 or less) for improved graphics rendering.

Also, Firefox for macOS Compositor improvement helps to speed up page load by as much as 22 percent, and reduce resource use for video by up to 37 percent.

Security Updates

Mozilla fixed totally 9 vulnerabilities that affected Firefox 69 and earlier version:

CVE-2019-15903: Heap overflow in expat library in XML_GetCurrentLineNumber
CVE-2019-11757: Use-after-free when creating index updates in IndexedDB
CVE-2019-11758: Potentially exploitable crash due to 360 Total Security
CVE-2019-11759: Stack buffer overflow in HKDF output
CVE-2019-11760: Stack buffer overflow in WebRTC networking 
CVE-2019-11761: Unintended access to a privileged JSONView object 
CVE-2019-11762: document.domain-based origin isolation has same-origin-property violation 
CVE-2019-11763: Incorrect HTML parsing results in XSS bypass technique
CVE-2019-11764: Memory safety bugs fixed in Firefox 70 and Firefox ESR 68.2

Users can install the new update via the following links or direct Firefox download page.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and Hacking News update.

Balaji
Balaji
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Latest articles

Beware Of Weaponized Excel Document That Delivers Fileless Remcos RAT

A recent advanced malware campaign leverages a phishing attack to deliver a seemingly benign...

Hackers Exploiting Apache OFBiz RCE Vulnerability in the Wild

A critical vulnerability in the Apache OFBiz framework has been actively exploited by hackers....

Docker Desktop Vulnerabilities Let Attackers Execute Remote Code

Docker has addressed critical vulnerabilities in Docker Desktop that could allow attackers to execute...

Fortinet Confirms Data Breach Following Hacker’s Claim of 440GB Data Theft

Fortinet, a leading cybersecurity firm, has confirmed a data breach involving a third-party cloud...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Microsoft Urges Windows Admins to Patch Microsoft Message Queuing RCE Flaw

Microsoft has disclosed two Critical remote code execution vulnerabilities in MSMQ (Microsoft Message Queuing)...

Microsoft Unveild New Windows 11 Features To Strengthen Security

Microsoft has been prioritizing security in Windows, as they introduced Secured-Core PCs to protect...

NETGEAR buffer Overflow Vulnerability Let Attackers Bypass Authentication

Some router models have identified a security vulnerability that allows attackers to bypass authentication.To...