ISLAMABAD: Critical vulnerabilities have been found in Mozilla Firefox, Firefox ESR, and Mozilla Thunderbird, allowing the attacker to execute malicious code in users’ browsers, enabling website cloning for phishing attacks on services, says the National Information Technology Board (NITB).
The NITB has issued 9th alert during past few weeks, warning consumers of cyber threats. The board on Tuesday stated that critical vulnerabilities had been found in Mozilla Firefox, Firefox ESR, and Mozilla Thunderbird, allowing the attacker to execute malicious code in users’ browsers, enabling website cloning for phishing attacks on services. Upgrade the latest versions of these products security, it recommended.
The board last week issued an alert saying that phishing emails carrying malicious doc file named as “Protocol.doc” is being spread for info-stealing.
It gathers the user’s browsers, emails, and FTP client’s information and sends it to the attacker’s servers.
The NITB recommended consumers to stay aware and be vigilant of such phishing emails.
The board also warned that cyber alerts, - phishing emails attached with malicious attachments containing PDF’s, and links with the capability to steal passwords via user’s browsers, email and FTP clients to hackers’ servers, and recommended not to download any email links or PDF files from unknown sources.
Copyright Business Recorder, 2020