Firefox worries as criminals get hold of SSL certificates -

Firefox has had to update its range of browsers to deal with a number of fraudulent SSL certificates which allow cybercriminals to dupe users into handing over personal information.

Just as Mozilla released its version 4.0 browser it has had to be updated along with versions 3.6 and 3.6 to counter the threat from illegally obtained SSL certifications by recognising and then blocking them automatically.

Essentially the fraudulent SSL codes mean that known sites are used to divert users to fake sites where they are potentially made to unknowingly download malware or hand over sensitive information.

Mozilla maintains that this is not a problem specific to its own browsers, with a similar update finding its way to Chromium, though it is not clear why the Firefox version has arrived five days later.

Though it states that current versions of Firefox are now “protected from this attack”, the company is “still evaluating the possibility of further response to this issue”.

However while the certificates have been revoked for the unnamed public websites that the Mozilla blog refers to, there is some debate as to whether the current certification authority system is actually able to meet threats from cyber criminals.

With five million downloads of the new 4.0 browser, Mozilla has urged users to continue to update security regularly to counter any threat.