9:08 AM EDT 4/8/2015
On March 31, Mozilla released the latest version of Firefox, 37.0 which introduces a new feature that can cryptographically protect connections even when servers don't support the HTTPS protocol. Dubbed “opportunistic encryption,” it acts as a bridge between plaintext HTTP connections and fully compliant HTTPS connections based on transport layer security or its predecessor, protocol secure sockets layer. But on April 3, Mozilla released Firefox 37.01, a minor maintenance release of the browser that disables the “opportunistic encryption” as a result of a vulnerability related to certificate verification.Read more