Tor Users under attack (switch browsers now! do not use windows!)

http://arstechnica.com/security/2016/11/tor-releases-urgent-update-for-firefox-0day-thats-under-active-attack/

this is very likely a state sponsored attack be wary


Comments


[8 Points] drkntmrkets:

From Tor website;

Tor Browser users who had set their security slider to "High" are believed to have been safe from this vulnerability. We will have alpha and hardened Tor Browser updates out shortly. In the meantime, users of these series can mitigate the security flaw in at least two ways: 1) Set the security slider to "High" as this is preventing the exploit from working.

If you do run Tor on Windows, make sure the security slider is set to high. However, I do recommend that everybody uses Tails, better safe than sorry. I assume most people here will have JS disabled when using Tor, so hopefully none of you have been affected by this.

Cheers for the heads up OP.


[2 Points] wombat2combat:

more info: https://www.reddit.com/r/DarkNetMarkets/comments/5fmxbb/turn_off_javascript_tor_browser_0day_being_used/dalyqy8/?context=3


[1 Points] captblackbeard1401:

Shit, anyone who clicked on that dutch website using windows + tor is fucked. Including me! how could we be so stupid! IT WAS AN LE HONEYPOT


[1 Points] xanax_xombie:

VPN, VPN, and one more time always ALWAYS use VPN. Before you attempt to connect to anything else, whether it onion or clearnet make sure that VPN is rockin.


[1 Points] acid_barrett:

arent they only under attack if they're visiting child porn sites?

http://www.theverge.com/2016/11/30/13799498/tor-browser-vulnerability-child-porn-fbi-exploit