The TOR Project is advising that people stop using Windows after the discovery of a zero day vulnerability in Firefox that undermines the main advantages of the privacy-centered network. For those of you who aren’t aware of what TOR is, TOR (or The Onion Router) is an open source piece of software that prevents anyone from learning your location or browsing habits.
The zero day was written to target Windows computers and exploits a vulnerability in an older version of Firefox (which is what the TorBrowser is based on), though it could potentially make its way to Linux and OS X. I should note that the latest version of the TorBrowser (version 2.3.25-10) has patched the vulnerability as has any Firefox browser since version 17.0.7. So if you are using an older version of the TorBrowser — update now.
Obviously, TOR is upset with this zero day exploit as it basically renders TOR useless by completely eliminating the reason why people TOR. The project is so upset by it that they have basically told people to abandon using Windows all together. “Really, switching away from Windows is probably a good security move for many reasons,” they wrote in the security advisory posted Monday.
While that’s not really a realistic option for most people, I guess I can understand their frustration.