Mozilla is working on a fix for a new
URL spoofing vulnerability, announced this week, that can result in a phishing exploit. The flaw, which affects all versions of the
Firefox browser, can be taken advantage of if a user visits a website hosting malicious code that automatically prompts a window or tab containing a bogus URL to open, according to an
advisory. A user, unable to tell if the URL is authentic because it has been
manipulated to appear legitimate, may disclose personal information to the malicious site. Mozilla recommends users only share data with trusted websites. — DK