[tor-bugs] #22809 [Applications/Tor Browser]: Tor Browser does not provide red security warning for downloading executable in HTTP
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Jan 14 11:49:19 UTC 2018
#22809: Tor Browser does not provide red security warning for downloading
executable in HTTP
--------------------------------------+--------------------------
Reporter: naif | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: ux-team | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Comment (by naif):
Now the Turla APT group is exploiting trough MITM the delivery of
legitimate executable download over HTTP:
https://www.darkreading.com/attacks-breaches/turla-cyberespionage-gang-
employs-adobe-flash-installer/d/d-id/1330788
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22809#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list