Matthew RosenquistApr 23

The security company Fingerprint discovered how on Firefox browsers, websites could track users even if they used private browsing tabs or the anonymity focused TOR browser. Mozilla closed the vulnerability in Firefox 150, that was released on April 21st 2026.

This vulnerability is another example how a subtle lack of entropy in the software industry can undermine privacy and security.

My full blog: https://open.substack.com/pub/matthewrosenquist/p/privacy-vulnerability-in-firefox

I expect more such issues to be discovered across browsers as the next generation of AI models are released, like Anthropic's Claude Mythos.

#cybersecurity #firefox #TOR #privacy

Show threadmeejah
@MatthewRosenquist Isn't this more like a subtle lack of *order*?
That is, if the keys were presented in sorted order rather than "whatever the hash table did" this would be mitigated?
Apr 23 at 11:15pmWeb