Mozilla snuffs password pilfering Firefox add-on

Mozilla has disabled and block-listed a Firefox add-on containing code that nabs login data sent to any website and reroutes it to a remote server.

The add-on — known as, um, Mozilla Sniffer — was uploaded to the Firefox add-on site on June 6, and the malicious code was discovered on Monday, after which the add-on was block-listed. This means netizens who installed the add-on will be prompted to remove it. Mozilla also says that, yes, anyone who has installed the add-on should change their web passwords tout de suite.

"If a user installs this add-on and submits a login form with a password field, all form data will be submitted to a remote location," Mozilla said in a Tuesday blog post, before adding that the remote server charged with collecting passwords appeared to be down.

According to Mozilla, the Sniffer was downloaded about 1,800 times, and as of Tuesday, there were 334 active users.

Read more -here-

• Tesla kills the $16,000 Cybertruck range extender
• Cue: Apple will add AI search in mobile Safari, challenging Google
• Sonos and Ikea are ending their partnership
• Skype shuts down after more than 2 decades
• Ireland fines TikTok 530 million euros for sending EU user data to China
• Xbox consoles, controllers, and games are getting more expensive