In line with a recent ‘official tweet‘ published by Coinbase’s security researcher ‘Philip Martin’, the earlier Firefox’s zero-day security flaw was utilized in attacking against the leading ‘cryptocurrency‘ exchange and wallet service provider named ‘Coinbase’.
According to the analysis, the ‘reported‘ zero-day vulnerability earlier found in Mozilla’s Firefox browser, has actually emerged besides another zero-day flaw that targeted Coinbase employees, which simply means that there have been two separate Firefox zero-day ‘attacks‘.
The Coinbase security researcher added:
“On Monday, Coinbase detected & blocked an attempt by a hacker to leverage the reported 0-day, besides a separate 0-day firefox sandbox escape, to target the [Coinbase] employees.”
Martin ‘explained‘ that Coinbase wasn’t the sole crypto-related company targeted within this campaign, adding that the firm is functioning to report several other businesses that they believe were additionally targeted. He outlined that the firm’s security team has seen “no evidence” that the exploit targeted [Coinbase] customers.
Coinbase Security initially ‘reported‘ on the security flaw along with Samuel Groß, security analyst with Google Project Zero’s security team, who ‘argued‘ that he 1st revealed the bug to Mozilla earlier on 15th April, this year.
Following these reports, Mozilla ‘published‘ security updates for its browser, admitting that the firm is “aware of targeted attacks following the wild abusing this flaw.”