Friday, November 1, 2024
HomeComputer SecurityTor Browser 8.5.2 Released With Fixes for Critical Zero-day Security Update in...

Tor Browser 8.5.2 Released With Fixes for Critical Zero-day Security Update in Firefox

Published on

Malware protection

Tor Browser 8.5.2 released with a fix for critical security updates in that allows an attacker to run malicious code on the vulnerable machine without user interaction.

Also, we update NoScript to 10.6.3, fixing a few issues. Tor Users with the safer and safest security levels were not affected by this security issue, reads the blog post.

This critical zero-day vulnerability initially reported to Mozilla by Samuel Groß, a member of Google Project Zero and Coinbase Security.

- Advertisement - SIEM as a Service

Attackers actively targeted the discovered JavaScript type confusion vulnerability that leads to an exploitable crash. Users are urged to update the new version immediately to protect themselves from this zero-day exploit.

The bug doesn’t affect the Tor users who were running under safer and safest security levels. Unfortunately, the release is not available for Android version as the development team unable to access the Android signing token.

Android users are recommended using Tor with safer or safest security levels. You can change the security level under Security Settings.

Changelog Tor Browser 8.5.2

  • Pick up a fix for Mozilla’s bug 1544386
  • Update NoScript to 10.6.3

Tor Browser 8.5.1 released for Windows, Linux and Mac and Android earlier this month. It is the first bug fix release in the 8.5 series.

You can Download Tor Browser 8.5.2 from Here Tor Browser and distribution directory. The Android version is available from Google Play

Follow us on Linkedin, Twitter, Facebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Also Read

TOP 11 Deep Web Search Engine Alternative for Google and Bing 2019

Top 5 Best Dark Web Browser for Anonymous Web Browsing With Ultimate Privacy

TOR and VPN Anonymous Enough for Dark Web

Dark Web Secrets: What Should You Know About Your Information Being on the Dark Web?

How To Access Dark Web Anonymously and know its Secretive and Mysterious Activities

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS...

ATPC Cyber Forum to Focus on Next Generation Cybersecurity and Artificial Intelligence Issues

White House National Cyber Director, CEOs, Key Financial Services Companies, Congressional and Executive Branch...

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan...

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS...

New PySilon RAT Abusing Discord Platform to Maintain Persistence

Cybersecurity experts have identified a new Remote Access Trojan (RAT) named PySilon. This Trojan...

Konni APT Hackers Attacking Organizations with New Spear-Phishing Tactics

The notorious Konni Advanced Persistent Threat (APT) group has intensified its cyber assault on...