Tails 5.0 Linux users warned against using it "for sensitive information"

[Corrine]

Via Bleeping Computer at Tails 5.0 Linux users warned against using it "for sensitive information":

 

Quote

Tails developers have warned users to stop using the portable Debian-based Linux distro until the next release if they're entering or accessing sensitive information using the bundled Tor Browser application.

Tails (short for The Amnesic Incognito Live System) is a Linux distro focused on protecting the users' anonymity (e.g., activists and journalists) and helping them circumvent censorship by forcing all connections to and from the Internet through the Tor network.

"We recommend that you stop using Tails until the release of 5.1 (May 31) if you use Tor Browser for sensitive information (passwords, private messages, personal information, etc.)," the Tails developers warned.

This warning was prompted by two critical zero-day bugs in the Firefox JavaScript engine (tracked as CVE-2022-1802 and CVE-2022-1529), exploited during the first day of the Pwn2Own 2022 Vancouver hacking contest and patched by Mozilla two days later.

While the bugs have already been patched upstream, the developers cannot deliver patches for any of the included apps until the next release, given that Tails is a live Linux distro.

 

More at the referenced link.

[securitybreach]

Um, why would you use javascript over tor anyway?

[crp]

Why would someone use Tails for non-sensitive purposes?

 

[zlim]

"why would you use javascript over tor anyway?" and 

 

"Why would someone use Tails for non-sensitive purposes?"

  

I can answer that...because people don't pay attention and are stupid. They use something and don't bother to read the information to see why they are using it.

It goes along with why do people still continue to click the links in popup boxes and spam email.