Update your Firefox browser immediately.
From the Mozilla Security Blog:
August 5, a Firefox user informed us that an advertisement on a news site in Russia was serving a Firefox exploit that searched for sensitive files and uploaded them to a server that appears to be in Ukraine. This morning Mozilla released security updates that fix the vulnerability. All Firefox users are urged to update to Firefox 39.0.3. The fix has also been shipped in Firefox ESR 38.1.1.
For more details, read the entire Mozilla blog post.
- Mozilla issues quick fix for Firefox zero-day bug (techworld.com.au)
- Firefox has a new security hole, but you can already patch it (engadget.com)
- Security alert: iOS, Firefox flaws found (bankrate.com)
- If You Use Firefox, You Should Update Right Away (time.com)
- 0-day attack on Firefox users stole password and key data: Patch now! (arstechnica.com)
- Update Firefox now! Fix rushed out for an exploit that steals files off your hard drive (theunhivedmind.com)
- Mozilla: Firefox Bug Could Secretly Search, Upload Your Files (consumerist.com)
- Use Firefox? You need this security update, stat (cbsnews.com)
- Mozilla Urges Firefox Users to Update Browser After Exploit is Discovered (blackchristiannews.com)
- Firefox users should update immediately (macdailynews.com)