Coindesk Logo
MarketsMarketsMarkets
Election 2024
Election 2024
Election 2024

Mozilla Closes Holes That Led to Coinbase Hacks

Mozilla Closes Holes That Led to Coinbase Hacks

Mozilla Closes Holes That Led to Coinbase Hacks

Hackers used two simple Mozilla vulnerabilities to spear-phish Coinbase employees.

Hackers used two simple Mozilla vulnerabilities to spear-phish Coinbase employees.

Hackers used two simple Mozilla vulnerabilities to spear-phish Coinbase employees.

By John Biggs
AccessTimeIconJun 24, 2019, 3:30 PM
Updated Aug 18, 2021, 1:04 PM
Presented By Icon

Election 2024 coverage presented by

Stand with crypto

A pair of simple Mozilla vulnerabilities made it easier for hackers to phish Coinbase employees. The exploit, detailed by ZDNet, was a remote code execution attack that could force machines running Firefox to install spyware to capture passwords and other data.

The two vulnerabilities - CVE-2019-11708 and CVE-2019-11707 - first appeared in April 15 and hackers used them to spear-phish Coinbase employees. When they visited sites linked in the email the browser would download a piece of spyware to steal logins and other data.

Some detail from the exploit suggests that the bug could escalate privileges outside of the "sandbox" where most Mozilla code runs:

Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer.

The two vulnerabilities combined to create a perfect storm, allowing hackers to run malware installers instantly. Researchers discovered the exploits on April 15 and they suspect that hackers saw them in Mozilla's Bugzilla bug tracking database and exploited them before they could be patched. The hack did not effect Coinbase users.

is asking users to update their browsers in order close these holes.

Image via Shutterstock.

Disclosure

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information have been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. CoinDesk has adopted a set of principles aimed at ensuring the integrity, editorial independence and freedom from bias of its publications. CoinDesk is part of the Bullish group, which owns and invests in digital asset businesses and digital assets. CoinDesk employees, including journalists, may receive Bullish group equity-based compensation. Bullish was incubated by technology investor Block.one.

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.

Read more about
MozillaNewsHacks