A year ago I was sharing how a Mozilla Performance Sheriff catches performance regressions, the entire Workflow they go through, and the incoming improvements. Since I joined the Performance Tools ...

Every year, in the spirit of openness upon which Mozilla was founded, we share publicly the ways we have protected, fought for and helped advance the internet in service of the people who rely on it every day.

In anticipation of the launch of open extensions on Android, we just added a link to “Explore all Android extensions” on AMO’s Android page to make it easy to discover new content. And just for fun and to offer a taste of what’s to come, we also released a couple dozen new open extensions for Android. You can find them listed beneath the Recommended Extensions collection on that AMO Android page. Try a few out!

I have reinstall Firefox but still persis. Can someone please help me understand how to fix it. As it only happens in firefox. And not in other browsers like brave or edge

I'm sure its common knowledge by now that whatever you write in text boxes on customer support chats can be seen by whoever is on the other side, without or before hitting send. Don't you think that's a breach of privacy?! I imagine it isn't too difficult to implement a fix for it: The browser (like Firefox) could choose not to upload the user input to wherever the website links to, without user input (like click a send button).

The Firefox extension API explicitly requires user actions before an extension can do things like open popup windows.

We’ve been working hard on making Firefox even faster and we’re extremely happy to report that this has resulted in an improvement in speed.

Great news for people using Firefox Nightly on Debian-based Linux distributions (such as Debian, Ubuntu, Linux Mint, and others): installing, updating, and testing the latest Firefox Nightly builds just got ...

I really don't like the psuedo-native look of the element dropdown menu on macOS, and I thought Firefox was trying to embrace native widgets when they added support for macOS right click context menus a few years ago. That issue was open for 20+ years! This sucks.

I was once told that Firefox users don’t always do enough to celebrate the small wins. Here’s something that I consider to be a big one, but might not be int...

Mozilla continues to champion user privacy on the web, teaming up with Fastly and Divvi Up to bring privacy-preserving technology to Firefox.

Based on technology from Fakespot.

We recently identified a bug in the addons.mozilla.org (AMO) external API that caused all signing requests to mark extension submissions as being Android compatible. A ...

I've configured my android phone to connect to cloudflare dns using the one.one.one.one server. When I go to https://1.1.1.1/help in Firefox for android, the page shows that it cannot use the DoH protocol, but Dot works. That wouldn't be too much of a problem but, since Firefox has rolled out ECH and it requires DoH, Firefox won't be using ECH. Is there a way to fix that. Thanks.

P. S.: I should point out that when I visit cloudflare's dns help page chrome for android does use DoH.

As web users, what we say and do online is subject to pervasive surveillance. Although we typically associate online tracking with ad networks and other third-party sites, our online communications travel across commercial telecommunication networks, allowing these privileged entities to siphon the names of the websites we visit and monetize our browsing history for their own gain.

Enter Encrypted Client Hello (ECH) – by encrypting that first “hello” between your device and a website’s server, sensitive information, like the name of the website you’re visiting, is protected against interception from unauthorized parties. ECH is now rolling out to Firefox users worldwide, allowing for a more secure and private browsing experience.

What is Encrypted Client Hello?

ECH is the most recent step in our mission to build a better internet, one where privacy is the industry standard. Mozilla has been developing this new internet privacy technology for nearly a half-decade in collaboration with other browsers, infrastructure providers, academic researchers, and standards bodies like the Internet Engineering Task Force (IETF).

Much of our data shared through websites, such as our passwords, credit card numbers and cookies, are protected with cryptographic protocols like Transport Layer Security (TLS). ECH is a new TLS extension that also protects the identity of the websites we’re visiting – filling the privacy gap in our existing online security infrastructure.

Usually, when a browser connects to a site, it transmits the site’s name in its unencrypted initial message, allowing network operators or observers on the network to monitor the websites visited by each user.

ECH uses a public key fetched over the Domain Name System (DNS) to encrypt the first message between a browser and a website, protecting the name of the visited website from prying eyes and dramatically improving user privacy.

Privacy as a default.

With ECH on Firefox, users can be assured that their browsing patterns are more private. But Firefox’s support for ECH is only one half of the story – web servers also need to implement ECH. Fortunately, ECH is an open standard which any website operator can deploy. Cloudflare has already rolled outsupport for ECH and we look forward to other providers launching their deployments in the near future.

It’s also important to understand that no one technology can be a panacea. ECH works alongside other security and privacy features in Firefox, including DNS-over-HTTPS (DoH). DoH encrypts DNS queries to protect the translation of website names to IP addresses, which ensures that website names aren’t visible to the network in DNS traffic and is essential for ECH to be effective. DoH and ECH can also be combined with a virtual private network (VPN) to provide an additional layer of privacy and security where the VPN masks a user’s IP address and encrypts data traffic, while ECH protects the identities of the websites a user visits from the VPN provider.

While Mozilla believes that privacy and security technologies should be available by default for all users, we also recognize that in certain circumstances, users may have alternative preferences, for example, if they are relying on family safety software at home, are using network-based ad blocking or are in an enterprise environment. ECH is designed to interoperate with these practices and respect the existing DoH opt-outs in Firefox, so these users won’t need to make any changes to continue enjoying a smooth and safe Firefox experience. Similarly, if users or administrators have opted-in to the increased or maximum levels of DoH protection, their decision will likewise be respected.

A culmination of years of privacy-minded research, experimentation and testing.

Half a decade ago, Mozilla began the work needed to modernize and safeguard the Domain Name System (DNS), closing long-standing data leaks in one of the internet’s oldest and first components. Around the same time, we also began work on the protocol which became the forerunner to ECH. Developing these complex systems safely and responsibly takes time, experience and collaboration with the community.

Over the course of our long history of building technology to counter online tracking and surveillance, our contributions to standards bodies like the IETF have played a pivotal role in the development of DoH, TLS1.3, QUIC and many more crucial technologies, shaping the landscape of online privacy and encryption.

Mozilla has long invested in technologies to protect the privacy of Firefox users and ECH gives users an even higher level of privacy by safeguarding their browsing history from unsavory network practices. We stand by our ongoing commitment to ensure privacy, security and user choice are non-negotiable. Take back your privacy by downloading Firefox today.

Highlights Some more great work from our performance team means that sites using Vue.js 3.0 will run better in Firefox! We’ve added some new behaviours to session restore, and ...

I like to tab trough the drop-down via the keyboard. The (…) button is a tab stop, so it gets in the way.

I used to work in the field of machine translation and would like to know more about how they are doing this translation. 10 years ago, we saw the explosion of statistical and training based translations. However, these are better suited for the cloud, so does anyone know where I can find info on how Firefox does their translations?

In August we encouraged developers to start preparing their desktop extensions for Firefox Android open availability on addons.mozilla.org (AMO). The project is progressing well and ...

Browser choice screens are back on the menu. Most notably, the EU’s Digital Markets Act (DMA) will require them from 2024. But lawmakers and regulators in many other jurisdictions have also been looking at choice screens alongside other interventions to address deep-seated competition issues in browsers and browser engines (explored in more detail in our 2022 ‘Five Walled Gardens’ report).

Nowadays, our cars are anything but a private space — they are full blown data collection nightmares on wheels.

New Mozilla research has revealed that popular global car brands — like Chevrolet, Nissan, Toyota, Kia, Audi, Jeep, Honda, Volkswagen, and more — are collecting your deeply personal data, like your genetic information and sexual activity. This invasive harvesting of information is collected via a web of sensors, microphones, cameras and the phones, apps, and connected services you use in your vehicle.

Car companies are brazenly collecting deeply personal information about people the moment they get into a car, often without explicit consent to do so. And that’s why the Mozilla community is now coming together to force car companies to respect our right to privacy. Add your name to ask car companies to stop collecting, sharing and selling our very personal information.

Find out more about our research on cars in the official launch blog post.