Two hackers by the names of Mischa Spiegelmock and Andrew Wbeelsoi have attacked the security of the Firefox browser, claiming that it is a "complete security mess" and that it cannot be made secure without massive rewrites of key parts of its code.
Reacting to these claims, Mozilla's security head Window Snyder claimed that she did not believe that the flaws were so serious that they could not be fixed with patches. Snyder did, however, admit the obvious need to investigate these issues.
"What they are describing might be a variation on an old attack," she said. "We're going to do some investigating."
During the presentation, a Mozilla security staffer named Jesse Ruderman appealed to the black hat community to responsibly disclose flaws via Mozilla's bug bounty programme instead of using them for malicious purposes.