Mozilla Security

@mozsec

Views and updates from the Mozilla Firefox security team

blog.mozilla.com/security/
Joined September 2011
0 Photos and videos Photos and videos

Tweets

You blocked @mozsec

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @mozsec

  1. Retweeted
    22 Jun 2016

    We can create a Web that is more encrypted than not in 2016. We're at 45% HTTPS page loads now, 5% more than six months ago. Let's do this.

    3 replies 71 retweets 70 likes
    Undo
  2. Retweeted
    9 Jun 2016

    "XSS vulnerabilities account for 66% of valid submissions" is why we're pushing hard on CSP in . src:

    1 reply 21 retweets 24 likes
    Undo
  3. Retweeted
    9 Jun 2016

    Christian Holler’s MSc thesis on random testing JavaScript netted him $53,000 in bug bounties and a job at Mozilla:

    2 replies 37 retweets 40 likes
    Undo
  4. Retweeted
    10 Jun 2016

    Two fresh penetration test reports of ours were published via MOSS. Tested were PCRE and libjpeg-turbo - enjoy:

    28 retweets 42 likes
    Undo
  5. Retweeted
    9 Jun 2016

    Help Make Open Source Secure

    1 reply 43 retweets 29 likes
    Undo
  6. Retweeted
    3 Jun 2016

    We're growing the Firefox Services Security team. Want to help and I keep the fox safe? Head over to

    29 retweets 17 likes
    Undo
  7. Retweeted
    11 May 2016

    We're running a RFP to audit the security of Firefox Accounts. Got the pentest/crypto skills? Email me at jvehent[at]

    3 replies 22 retweets 8 likes
    Undo
  8. Retweeted
    4 May 2016

    Woo! The HTTP Observatory has hit a million scans! Now I just need to find some time to finish the site!

    2 replies 5 retweets 8 likes
    Undo
  9. 28 Apr 2016

    Thanks to of GCHQ for helping protect Firefox users. Excellent bug reports for &

    36 retweets 30 likes
    Undo
  10. Retweeted
    10 Mar 2016

    Bending the curve for HTTPS adoption, which has quadrupled since launched!

    13 replies 496 retweets 391 likes
    Undo
  11. Retweeted
    19 Feb 2016

    How architecting Firefox for security stopped the bugs and spared us the worst of a security breach:

    2 replies 106 retweets 127 likes
    Undo
  12. Retweeted
    15 Feb 2016

    Extend mutation routines with Python modules:

    1 reply 31 retweets 41 likes
    Undo
  13. Retweeted
    15 Feb 2016

    Fuzzing a specific part of a large project with ? Try the new partial instrumentation feature:

    38 retweets 55 likes
    Undo
  14. Retweeted
    22 Jan 2016

    Keeping our security code clean and shiny is a big deal. Help us keep our shields up in this good first C++ bug:

    6 retweets 7 likes
    Undo
  15. Retweeted
    28 Dec 2015

    Really nice JIT security improvement by : JIT code is now W^X, i.e non-writable unless patching!

    14 retweets 16 likes
    Undo
  16. Retweeted
    23 Nov 2015

    Firefox now supports OCSP Must-Staple:

    21 retweets 16 likes
    Undo
  17. Retweeted
    12 Nov 2015

    Congrats to editors ! Subresource Integrity is a W3C Candidate Recommendation.

    16 retweets 15 likes
    Undo
  18. Retweeted
    3 Nov 2015

    Firefox is simplifying their security indicators. Cool work!

    Updated security indicators released today in Firefox 42-
    1 reply 17 retweets 22 likes
    Undo
  19. Retweeted
    3 Nov 2015

    We’re taking private browsing and to a new level today.

    6 replies 89 retweets 72 likes
    Undo
  20. Retweeted
    3 Nov 2015

    Updated security indicators released today in Firefox 42-

    3 replies 13 retweets 37 likes
    Undo

@mozsec hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·