(Minghui.org) There is a security leak in both Firefox and Chrome browsers. A hacker can register a domain name that looks like the one he’s trying to hack. The accounts of users who log in to the fake website can then be stolen.
All users, especially practitioners in China, need to take immediate action. The following text will show you how to patch the leak in Firefox and Chrome. We recommend that practitioners in China use ONLY Firefox or Chrome to log into forums and webmail services.
For Firefox users:
There are two ways to patch the leak. Please note that upgrading Firefox will not solve the problem.
1. Go to the website (https://webmail.minghui.org/registration/firefox/firefox.rar) or the Minghui website (http://big5.minghui.org/mh/articles/2015/7/13/312394.html) to download the portable version of Firefox. This new version does not have this problem, so please stop using and delete the old version.
2. You can do the security setup for your current portable Firefox.a. Type in “about:config” in the address bar and press enterb. Press enter or click on the button “I’ll be careful, I promise!”c. Type in “puny” in the search columnd. There should be an option at the bottom says “network.IDN_show_punycode.” If it says “true” in the value column, then you don’t have to do anything. If it says “false,” then double click on “network.IDN_show_punycode” and make sure it changes to “true” in the value column.e. Quit Firefox from “exit” in the File menu
For Google Chrome users:
Simply upgrading your version of Chrome will do it.
Category: Announcements