A security vulnerability that has been recently discovered on the Firefox for Android browser puts data that has been stored on an android device as well as that within the browser at risk. Developer Sebastian Guerrero Selma of viaForensics posted a video showing how hackers will be able to access data on the device.
Files are accessed through the standard “file://” URI syntax. Firefox encrypts the data stored in internal storage which is why hackers also introduce a third-party app which gets the encrypted keys stored on the device.
Selma says that he has already notified Mozilla about this vulnerability and that he has sent detailed information on how the exploit is done.
Mozilla has reportedly fixed the exploit on their latest update to the browser however this has to be confirmed yet. Just to make sure it’s best to use other browsers to navigate websites.