Skip to main content

Update Firefox for Android now to fix a critical security hole

Firefox for Android
(Image credit: VideoBCN / Shutterstock)

Mozilla’s Firefox browser for Android was updated recently to patch a vulnerability that would have allowed an attacker to view your data through a JavaScript exploit.

Firefox was once seen as a fantastic alternative to Microsoft’s Internet Explorer browser, showcasing fast load times and a clean UI, with tabs as its front and centre feature.

With the rise of Google Chrome and Apple’s Safari browser, its spotlight has dimmed, but its features on Android and iOS easily take it shoulder to shoulder with the other browsers on these platforms.

What was the issue?

There is an exploit called ‘universal cross-site scripting’, which allows a hacker to look upon your browser history through cookies and see any data that you may have typed in, which would allow them to gain access to certain accounts.

This exploit would have allowed someone to ‘spoof’ the browser into thinking that a previous webpage the user had browsed was genuine through Javascript code. But in effect, the code would hijack Firefox, and would be able to look at your stored passwords.

Curiously, only the Android version was affected, but with version 88.1.3 now out, the vulnerability has been fixed.

How to update Firefox 

While the Google Play Store can update apps automatically, it’s always best to go into the app itself to check for updates. The list of recently updated apps will notify you if Firefox has been updated or not.

The update should be listed as version ‘88.0.1’, which will list the fix for this JavaScript vulnerability.

If Google Play hasn’t updated the browser already, just press on ‘Update’ and Firefox will download, fixing the vulnerability.

Via Naked Security by Sophos

Daryl Baxter

Daryl is the Software and Downloads Writer at TechRadar, where you will see his posts covering Apple, Google, Microsoft and the software that they all inhabit.