-
Clean Up Your Browser’s Cache, Cookies, and History for a Faster Computer22 August 2022 -
Instagram Can Track User Data, Behaviour via Its In-App Browser; Meta Responds: Report12 August 2022
-
CERT-In Detects Threats With High Severity in iPhone, iPad, Mac, ChromeOS and Firefox Browser2 August 2022
-
Apple Pay Said to Work on Chrome, Edge, and Firefox on iOS 16 Beta 4 Ahead of EU Antitrust Rules1 August 2022
-
EU Antitrust Regulators Probing Alliance for Open Media’s Video Licensing Policy, Ahead of Incoming EU Rules8 July 2022
Firefox Maker Fears DarkMatter 'Misuse' of Browser for Hacking
By Reuters | Updated: 5 March 2019 11:55 IST
Advertisement
Firefox browser-maker Mozilla is considering whether to block cyber-security company DarkMatter from serving as one of its internet security gatekeepers after a Reuters report linked the United Arab Emirates-based firm to a cyber-espionage program.
Reuters reported in January that DarkMatter provided staff for a secret hacking operation, codenamed Project Raven, on behalf of an Emirati intelligence agency. The unit was largely comprised of former US intelligence officials who conducted offensive cyber operations for the UAE government.
Former Raven operatives told Reuters that many DarkMatter executives were unaware of the secretive program, which operated from a converted Abu Dhabi mansion away from DarkMatter's headquarters.
Those operations included hacking into the internet accounts of human rights activists, journalists and officials from rival governments, Reuters found. DarkMatter has denied conducting the operations and says it focuses on protecting computer networks.
While Mozilla had been considering whether to grant DarkMatter the authority to certify websites as safe, two Mozilla executives said in an interview last week that Reuters' report raised concerns about whether DarkMatter would abuse that authority.
Mozilla said the company has not yet come to a decision on whether to deny the authority to DarkMatter, but expects to decide within weeks.
"We don't currently have technical evidence of misuse (by DarkMatter) but the reporting is strong evidence that misuse is likely to occur in the future if it hasn't already," said Selena Deckelmann, a senior director of engineering for Mozilla.
She said Mozilla was also considering stripping some or all of the more than 400 certifications that DarkMatter has granted to websites under a limited authority since 2017.
Marshall Erwin, director of trust and security for Mozilla, said the Reuters Jan. 30 report had raised concerns inside the company that DarkMatter might use Mozilla's certification authority for "offensive cyber-security purposes rather than the intended purpose of creating a more secure, trusted web."
DarkMatter did not respond to a Reuters request for comment. The UAE embassy in Washington also did not respond to a request for comment.
In a February 25 letter to Mozilla, posted online by the cyber-security company, DarkMatter CEO Karim Sabbagh denied the Reuters report linking his company to Project Raven. "We have never, nor will we ever, operate or manage non-defensive cyber activities against any nationality," Sabbagh wrote.
Websites that want to be designated as secure have to be certified by an outside organization, which will confirm their identity and vouch for their security. The certifying organization also helps secure the connection between an approved website and its users, promising the traffic will not be intercepted.
Organizations that want to become certifiers must apply to individual browser makers like Mozilla and Apple. Mozilla is seen by security experts as a respected leader in the field and particularly transparent because it conducts much of the process in public, posting the documentation it receives and soliciting comments from internet users before making a final decision.
DarkMatter has been pushing Mozilla for full authority to grant certifications since 2017, the browser maker told Reuters. That would take it to a new level, making it one of fewer than 60 core gatekeepers for the hundreds of millions of Firefox users around the world.
Deckelmann said Mozilla is worried that DarkMatter could use the authority to issue certificates to hackers impersonating real websites, like banks.
As a certification authority, DarkMatter would be partially responsible for encryption between websites they approve and their users.
In the wrong hands, the certification role could allow the interception of encrypted web traffic, security experts say.
In the past Mozilla has relied exclusively on technical issues when deciding whether to trust a company with certification authority.
The Reuters investigation has led it to reconsider its policy for approving applicants. "You look at the facts of the matter, the sources that came out, it's a compelling case,” said Deckelmann.
© Thomson Reuters 2019
Comments
For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.
Related Stories
Advertisement
Follow Us
-
03:19
Gadgets 360 With Technical Guruji: Something About the Nothing Ear, Ear (a) -
19:21
Gadgets 360 With Technical Guruji: Samsung's New AI Smart TVs, Nothing Ear -
05:23
Gadgets 360 With Technical Guruji: Samsung's New AI Smart TVs -
01:17
Gadgets 360 With Technical Guruji: Tech Tip [April 20, 2024] -
02:05
Gadgets 360 With Technical Guruji: Ask TG [April 20, 2024]
Advertisement
Popular on Gadgets
- AI
- iPhone 16 Leaks
- Apple Vision Pro
- Oneplus 12
- iPhone 14
- Apple iPhone 15
- OnePlus Nord CE 3 Lite 5G
- iPhone 13
- Xiaomi 14 Pro
- Oppo Find N3
- Tecno Spark Go (2023)
- Realme V30
- Best Phones Under 25000
- Samsung Galaxy S24 Series
- Cryptocurrency
- iQoo 12
- Samsung Galaxy S24 Ultra
- Giottus
- Samsung Galaxy Z Flip 5
- Apple 'Scary Fast'
- Housefull 5
- GoPro Hero 12 Black Review
- Invincible Season 2
- JioGlass
- HD Ready TV
- Laptop Under 50000
- Smartwatch Under 10000
- Latest Mobile Phones
- Compare Phones
Latest Gadgets
- iQOO Z9x
- iQOO Z9
- HMD Pulse
- HMD Pulse+
- HMD Pulse Pro
- Realme Narzo 70x 5G
- Realme Narzo 70 5G
- Samsung Galaxy C55
- Lenovo IdeaPad Pro 5i
- Asus ZenBook Duo 2024 (UX8406)
- Realme Pad 2 Wi-Fi
- Redmi Pad Pro
- boAt Storm Call 3
- Lava ProWatch Zn
- Samsung Samsung Neo QLED 8K Smart TV QN800D
- Samsung Neo QLED 4K Smart TV (QN90D)
- Sony PlayStation 5 Slim Digital Edition
- Sony PlayStation 5 Slim
- Lloyd 1.5 Ton 3 Star Inverter Split AC (GLS18I3FOSEW)
- Haier 1.5 Ton 3 Star Triple Inverter Split AC (HSU18K-PYSS3BN-INV)
- About Us
- Sitemaps
- Feedback
- Archives
- Contact Us
- RSS
- Advertise
- Career
- Privacy Policy
- Ethics
- Editorial Policy
- Terms & Conditions
- Complaint Redressal
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
