GNUCitizen.org has discovered a way for malicious JAVA scripts to be hidden in a page that will be automatically extracted by Firefox’s JAVA reader. There is an easy fix if you install the NoScript Firefox extension, but this means that you’ll be running absolutely no scripts, making for a far more boring web browsing experience.
Full story »