Hacker News new | comments | ask | show | jobs | submit login

Like Apple products, Firefox branded itself as malware proof.



"“Beware of spyware. If you can, use the Firefox browser.” - USA Today"

"Privacy and Security

Built with your security in mind, Firefox keeps your computer safe from malicious spyware by not loading harmful ActiveX controls. A comprehensive set of privacy tools keep your online activity your business."


While that's technically correct - Firefox couldn't (can't?) load ActiveX controls, therefore it could't load harmful ActiveX controls - the Firefox extensions system has permitted installation of executable code for a long time, if not since its inception. Since that's what ActiveX is, more or less, Firefox has never been any more secure in that respect than e.g. Internet Explorer.

Like Apple products, as Firefox becomes more popular (and therefore a jucier attack target) there will be more malware that targets it.

The difference being that you have to decide to install this harmful extension. ActiveX just gets loaded during regular browsing.

ActiveX hasn't worked that way for a long time. At least since XP SP2, released 2004. Possibly even before then - I'm not sure exactly what XP SP2 changed.

Edit: Fix typo.

Are you blaming Mozilla/Firefox for every possible 3rd party misuse of their software?

No. And rereading my post, I'm just not seeing any blame.

I'm presenting some pertinent history and tying it to the recent Apple malware news, which has been heavily discussed here.

Applications are open for YC Summer 2019

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact