computer Security

Firefox 74 Released – Several Improvement & Security Fixes & Upgraded TLS 1.2

Recently, Mozilla launched Firefox 74 for Windows, Mac, and Linux, and the all-new Firefox 74 offers very strict rules for the add-ons, TLS 1.0, and TLS 1.1, which is disabled by default, and some important developer features

One of the latest features is that third-party programs aren’t authorized to install add-ons in your browser. Hence, in a case for some reason, an application has installed an undesired add-on, then you can now remove it by yourself from the browser’s add-on manager without any issue.

Mozilla also announced that in the all-new Firefox 74, they have fixed 13 vulnerabilities which include, 6 High severity vulnerabilities, 6 Moderate severity vulnerabilities, and 1 Low severity vulnerability.

Apart from effective add-on management, this update covers the strength to reverse alpha sort login details in Lockwise. It enables you to import bookmarks and history from the latest Microsoft Edge browser on Windows and Mac.

Firefox now presents better privacy for your web voice and video calls by providing support for mDNS (Multicast DNS), ICE, which cloaks your IP address with a casual ID in specific WebRTC scenarios.

Moreover, Firefox 74 withdraws support for TLS 1.0 and TLS 1.1. Generally, these were first turned off in September 2019, while Firefox 74 was yet in the Nightly phase.

Thus, the website admins should guarantee that TLS 1.2 or TLS 1.3 are applied instead. As per to Qualys SSL Labs, 97.1% of websites support TLS 1.2 while 26.5% support TLS 1.3.

Now, if you want to update your Firefox to the latest version, Firefox 74, simply you have to go to Help -> About Firefox -> Firefox Automatically Check the Update, that’s it.

Firefox 74 Security Updates

Firefox handles add-ons, also known as extensions, a system for browsers that Mozilla first discovered, is now changing with this new release.

As any add-ons that have been installed by external apps (sideloaded), can now be extracted using the Add-ons Manager. Moreover, now only users can install add-ons, as Mozilla is doing it impossible for different applications to install Firefox add-ons.

Well, this is a move to muscle up Firefox security, though it may create headaches for enterprises that extend Firefox to their employees. Thus, the Enterprises can still maintain sideloading extensions applying policies.

Apart from all these things, Mozilla and other leading browser makers published plans to oppose the old standards TLS 1.0 and 1.1 in 2020. Mozilla started to impair TLS 1.0 and 1.1 in Firefox Nightly last year, and now they stop supporting the encryption protocols in Firefox 74.0 Stable.

Not only this, but TLS also gets Secure Sockets Layer (SSL) and thus it allows to manage the encryption of each HTTPS connection.

Moreover, Firefox will show a “secure connection failed” error when a website only supports TLS 1.1 or below. Basically, the sites need to support at least TLS 1.2 to make sure that users can relate to the websites quickly without any issue.

Download Firefox 74 from the following links:-

So, what do you think about this? Simply share all your views and thoughts in the comment section below. And if you liked this post then simply do not forget to share this article with your friends, family, and on your social profiles as well.

Also Read

Firefox 73 Released – Added NextDNS in Firefox DNS over HTTPS & Several Security Vulnerabilities are Fixed


Gurubaran is a Security Consultant, Security Editor & Co-Founder of Cyber Security News & GBHackers On Security.

Recent Posts

Defend Ransomware Attacks With Top Effective Proactive Measures in 2024

We're currently living in an age where digital threats loom large. Among these, ransomware has…

23 mins ago

GoTitan Botnet Actively Exploiting Apache ActiveMQ Vulnerability

Attackers are exploiting the recently discovered critical security vulnerability tracked as (CVE-2023-46604) affecting Apache ActiveMQ…

17 hours ago

Cybercriminals are Showing Hesitation to Utilize AI When Executing Cyber Attacks

Media reports highlight the sale of LLMs like WormGPT and FraudGPT on underground forums. Fears…

17 hours ago

Vigil: Open-source Security Scanner for LLM Models Like ChatGPT

An open-source security scanner, developed by Git Hub user Adam Swanda, was released to explore…

18 hours ago

Slovenia’s Biggest Power Provider has Suffered a Cyberattack

One of Slovenia's major power providers, HSE, has recently fallen victim to a significant cyberattack.…

18 hours ago

Genesis Market Technique: Hackers Exploited Node.js and EV Certificates

In the labyrinthine landscape of cyber threats, the Trend Micro Managed XDR team has uncovered…

21 hours ago