A German cybersecurity firm Cure 53 did a security audit of Mozilla VPN apps and clients and found a number of vulnerabilities. Two of these vulnerabilities were rated medium and one was rated high. The highly-rated vulnerability could expose customers to cross-site WebSocket hijacking attempts.
The issues were notified to the company and have been now fixed. So, no customers were affected.
Cure53 is a 15 years old German firm based in Berlin. The company performs software testing and code auditing. It did an independent audit of Mozilla VPN to find security issues in Mozilla VPN.
Mozilla VPN is a good VPN service but can’t compete against good VPN providers such as ExpressVPN or NordVPN. Mozilla VPN has fewer features and offers access to just 5 registered devices. The company has now more than 400 servers located in 30+ countries. That’s still much less than most good VPNs.
Also see