We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Ko tenda hembiapoite sa’ivéta oñemba’apokuévo hese hembiapo porãve hag̃ua. Peteĩ jehaipyre nomoĩporãiramo ne apañuái ha eporanduséramo, roguerekohína ore nepytyvõ rekoha ikatútava ndeykeko @FirefoxSupport Twitter-pe ha avei /r/firefox Reddit-pe.

Eheka Pytyvõha

Emboyke pytyvõha apovai. Ndorojeruremo’ãi ehenói térã eñe’ẽmondóvo pumbyrýpe ha emoherakuãvo marandu nemba’etéva. Emombe’u tembiapo imarãkuaáva ko “Marandu iñañáva” rupive.

Kuaave

Security Breach -- realitychance.com

more options

I got a phishing e-mail on my mail.yahoo.com webmail interface. I deleted it but immediately received the following warning from Bitdefender:

Suspicious connection blocked 8 minutes ago

Feature: Online Threat Prevention

firefox.exe attempted to establish a connection relying on an untrusted certificate to realitychance.com. We blocked the connection to keep your data safe since untrusted certificates are issued by unrecognized Certificate Authorities.

Kinda weird that an e-mail where I didn't click any link is still able to manipulate my browser like that!

I got a phishing e-mail on my mail.yahoo.com webmail interface. I deleted it but immediately received the following warning from Bitdefender: Suspicious connection blocked 8 minutes ago Feature: Online Threat Prevention firefox.exe attempted to establish a connection relying on an untrusted certificate to realitychance.com. We blocked the connection to keep your data safe since untrusted certificates are issued by unrecognized Certificate Authorities. Kinda weird that an e-mail where I didn't click any link is still able to manipulate my browser like that!

Opaite Mbohovái (2)

more options

No infection was detected by Bitdefender or Windows Security. It's the ATTEMPT that concerns me.

more options

If the certificate was not valid, then Firefox wouldn't have loaded the content, either. I'm not sure Bitdefender made a difference in this case.

But why was there a request in the first place? I have a thought:

Does your email immediately show embedded images in a message preview? Images embedded in messages (or other web pages) need to be requested from the server, and can trigger that kind of block.