It's nonsense. He's lost his marbles again.

Meh. Pointless, like every other evil bit. Evildoers won't set the evil bit because they'd rather you not know they were doing evil, and they won't obey your do-no-evil bit because they're evil.

The only ways to solve adtech are prison and penury.

the Vulnerability was in the language package of firefox.

i have the exploid on my harddrive but i need to perform desaster recovery.
i did know after 10seconds something is wrong and like 1-2 minutes later i plucked off the power.

i was informed the attackers plan to leak/release my search history and chatlog of telegram and whatsapp. and whatever they could get in this short time.

Flatpak Firefox in a sandbox would maybe stop harddrive access but if you have web telegram and web whatsapp open they get this anyway...

blocking or disable javascript makes the web unuseable but some people use noscript and whitelist trusted websites...

i also think native firefox will disapear in fedora and they make flatpak firefox the default.

I guessed that. I was wondering how the exploit works.

I guessed that. I was wondering what their goal was (i.e. how much OS access they needed to achieve their trojan-ing goals), which you just explained.

uMatrix is like NoScript on steroids. It lets you do stuff like saying "Allow frames from foo.com on site X but not site Y. Allow JavaScript on Site X when I navigate to it in the address bar but not when it's used for third-party assets on other sites. etc. etc. etc."

I already ordered a "C't Desinfec't" usb stick to then scan the harddrive.
and in 3 days i will order a new SSD for my computer. after that i will try to find out what happened extracting log files checking the autostart function what was installed to start after next boot.
if i find something i will send it to Citizen Lab.

"how the exploit works."

at this point i honestly don't know.

i will try to find out.

looks like i found something:
CVE-2023-6212​



"
CVE-2023-6212
Memory safety bugs present in Firefox 119, Firefox 115.4,...

Unreviewed Published Nov 21, 2023 to the GitHub Advisory Database • Updated Nov 23, 2023

Package
No package listed— Suggest a package

Affected versions
Unknown

Patched versions
Unknown

Description
Memory safety bugs present in Firefox 119, Firefox 115.4, and Thunderbird 115.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 120, Firefox < 115.5, and Thunderbird < 115.5.0.
References

• https://nvd.nist.gov/vuln/detail/CVE-2023-6212
• https://bugzilla.mozilla.org/buglist.cgi?bug_id=1658432%2C1820983%2C1829252%2C1 856072%2C1856091%2C1859030%2C1860943%2C1862782
• https://www.mozilla.org/security/adv...s/mfsa2023-49/
• https://www.mozilla.org/security/adv...s/mfsa2023-50/
• https://www.mozilla.org/security/adv...s/mfsa2023-52/
• https://www.debian.org/security/2023/dsa-5561

Published by the National Vulnerability Database Nov 21, 2023

Published to the GitHub Advisory Database Nov 21, 2023

Last updated Nov 23, 2023

Severity
Unknown

Weaknesses
No CWEs

CVE ID
CVE-2023-6212

GHSA ID
GHSA-4cv2-qh42-x2j4

"