Friday, January 15, 18:41
Home security Firefox: New protection against drive-by-downloads

Firefox: New protection against drive-by-downloads

Mozilla will add a new security feature to Firefox in October that will prevent malicious websites from automatically downloading and installing malware on a user's computer.

This type of attack called drive-by download has been around for two decades and usually happens when users visit a site containing malicious code posted there by an attacker.

The role of malicious code is to abuse legitimate functions / attributes in browsers and web standards for starting automatic file downloads or download prompts, hoping to trick the user into running a malicious file.


There are many types of drive-by downloads, depending on the browser capability that attackers choose to use.

Browsers such as Chrome, Firefox and Internet Explorer have gradually developed various forms of protection for autofocus, but of course they can not offer 100% protection due to the changing landscape of online attacks, with the attackers always finding a way to invade.

The last round of protection against drive-by downloads is called "sandboxed iframes", which are often used to load ads and embedded widget (videos, music tracks, podcasts) on third party websites.

The idea is that websites rarely make downloads through "sandboxed iframes", as most of these widgets are commonly used for embedding. content.

Chrome is blocking them for the first time downloads starting with the "sandboxed iframes" with the release of Chrome 73 in March 2019, with this option being completely removed in Chrome 83 in May 2020.

This week, Firefox announced something similar. Starting with Firefox 82, which is scheduled to be released next month in October 2020, Firefox will block all downloads of files from a "sandboxed iframe".

The only situations where downloads will be accepted are if the site owner or widget provider has an "allowed download" flag in the iframe. However, most do not do this because it is a security risk and that is why they use "sandboxed iframes" instead of the classic iframes.


Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehc
Be the limited edition.


Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...

What are the best and most affordable 5G phones for 2021

The market will soon be flooded with mid-range 5G devices. Everything that happens will be really exciting: you will be able to ...

Verified Twitter accounts in a cryptocurrency scam with the name of Elon Musk violated!

Lately, hackers have been violating verified Twitter accounts in a cryptocurrency giveaway scam, in which the name of the CEO is used ...

Classiscam: Fraudsters "fake" brands and deceive users of European markets!

Dozens of criminal gangs publish fake ads in popular online markets, to attract unsuspecting users to "fraudulent" commercial sites or phishing ...

iOS 14.4: Displays a notification for repairs with non-genuine cameras

Starting with the iPhone 11, Apple has added a notification to iOS that tells the user when the device has a ...