{"id":25603,"date":"2019-02-25T00:57:02","date_gmt":"2019-02-25T00:57:02","guid":{"rendered":"http:\/\/be068e0c-d1a9-4199-852c-fe070e6a828a"},"modified":"2019-02-25T00:57:02","modified_gmt":"2019-02-25T00:57:02","slug":"surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/","title":{"rendered":"Surveillance firm asks Mozilla to be included in Firefox&#8217;s certificate whitelist"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/zdnet3.cbsistatic.com\/hub\/i\/r\/2019\/01\/24\/8846aae5-12e1-4208-a89e-48bb745b6327\/thumbnail\/770x578\/49d4f53aecd2a63866f7a00aa5a67167\/mozilla-fenix-new-android-browsers-intri-5c49ab7860b2b586408754da-1-jan-24-2019-12-14-06-poster.jpg\" class=\"ff-og-image-inserted\"\/><\/div>\n<p>Mozilla&#8217;s security team has been caught between a rock and a hard place in regards to a recent request to add a known surveillance vendor to Firefox&#8217;s internal list of approved HTTPS certificate issuers.<\/p>\n<div class=\"relatedContent alignRight\">\n<h3 class=\"heading\"><span class=\"int\">More security news<\/span><\/h3>\n<\/div>\n<p>The vendor is named DarkMatter, a cyber-security firm based in the United Arab Emirates that has been known to sell surveillance and hacking services to oppressive regimes in the Middle East [<a href=\"https:\/\/theintercept.com\/2016\/10\/24\/darkmatter-united-arab-emirates-spies-for-hire\/\" target=\"_blank\" rel=\"noopener noreferrer\">1<\/a>, <a href=\"https:\/\/www.evilsocket.net\/2016\/07\/27\/How-The-United-Arab-Emirates-Intelligence-Tried-to-Hire-me-to-Spy-on-its-People\/\" target=\"_blank\" rel=\"noopener noreferrer\">2<\/a>, <a href=\"https:\/\/www.reuters.com\/investigates\/special-report\/usa-spying-raven\/\" target=\"_blank\" rel=\"noopener noreferrer\">3<\/a>].<\/p>\n<p>A few months back, DarkMatter filed a bug report asking that its own root certificates be added to the <a href=\"https:\/\/blog.mozilla.org\/security\/2019\/02\/14\/why-does-mozilla-maintain-our-own-root-certificate-store\/\" target=\"_blank\" rel=\"noopener noreferrer\">Firefox&#8217;s certificate store<\/a> &#8211;which is an internal list of Certificate Authorities (CAs).<\/p>\n<p>CAs are companies, organizations, and other entities that are approved to issue new TLS certificates &#8211;the mechanism that supports encrypted HTTPS communications.<\/p>\n<p>Mozilla uses this certificate store to know what TLS certificates to trust when loading encrypted content inside Firefox and Thunderbird, similar to how Apple, Google, and Microsoft all use their own certificate stores to know what content to trust when loading encrypted content inside Safari, macOS, Chrome, Chrome OS, Edge, IE, Windows, and other of their products.<\/p>\n<p>An organization that has a root certificate added in these root stores has the power to issue new certificates that are automatically trusted by these major companies and their respective browsers and operating systems. Antivirus products will also trust certificates that come from CAs whose root certificates are in a certificate store, trusting those applications as legitimate.<\/p>\n<p>Currently, Mozilla is caught between a rock and a hard place because DarkMatter has a history of shady operations but also has a clean history as a CA, without any known abuses.<\/p>\n<section class=\"sharethrough-top\" data-component=\"medusaContentRecommendation\" data-medusa-content-recommendation-options=\"{&quot;promo&quot;:&quot;promo_ZD_recommendation_sharethrough_top_in_article_desktop&quot;,&quot;spot&quot;:&quot;dfp-in-article&quot;}\">\n<\/section>\n<p>On one side Mozilla is pressured by organizations like the Electronic Frontier Foundation, Amnesty International, and The Intercept to decline DarkMatter&#8217;s request, while on the other side DarkMatter claims it never abused its TLS certificate issuance powers for anything bad, hence there&#8217;s no reason to treat it any differently from other CAs that have applied in the past.<\/p>\n<p>Fears and paranoia are high because Mozilla&#8217;s list of trusted root certificates is also used by some Linux distros. Many fear that once approved on Mozilla&#8217;s certificate store list, DarkMatter may be able to issue TLS certificates that will be able to intercept internet traffic without triggering any errors on some Linux systems, usually deployed in data centers and at cloud service providers.<\/p>\n<p>In Google Groups and Bugzilla discussions on its request, DarkMatter has denied any wrongdoing or any intention to do so.<\/p>\n<p>The company has already been granted the ability to issue TLS certificates via an intermediary, a company called QuoVadis, now owned by DigiCert.<\/p>\n<p>Those who are asking Mozilla to decline DarkMatter&#8217;s request of inclusion in the root certificate store were quick to seize on the fact that DarkMatter has already misissued a few TLS certificates already via QuoVadis. However, most seem technical errors, and the certificates don&#8217;t seem to have been abused for anything malicious.<\/p>\n<p>&#8220;Given DarkMatter&#8217;s business interest in intercepting TLS communications adding them to the trusted root list seems like a very bad idea,&#8221; EFF&#8217;s Cooper Quintin said in the Google Groups discussions. &#8220;I would go so far as revoking their intermediate certificate as well, based on these revelations.&#8221;<\/p>\n<p>Quintin expanded on his fears in a <a href=\"https:\/\/www.eff.org\/deeplinks\/2019\/02\/cyber-mercenary-groups-shouldnt-be-trusted-your-browser-or-anywhere-else\" target=\"_blank\" rel=\"noopener noreferrer\">post on the EFF blog<\/a>, reminding Mozilla that it went through a similar issue in 2009 with CNNIC, the Chinese government&#8217;s official CA. Mozilla approved CNNIC as a trusted root CA in Firefox in 2009, and the CA was caught misissuing certificates for Google domains in 2015, allowing threat actors to intercept traffic meant for Google sites &#8211;an event that got CNNIC banned inside most certificate root store lists.<\/p>\n<p>According to Mozilla engineers who spoke with ZDNet on deep background and did not want to share their names because they were not authorized to speak on behalf of the organization, Mozilla is seriously considering the issue.<\/p>\n<p>We were told that Mozilla was not aware of DarkMatter&#8217;s history at the time it applied to be included in its root store a few months back. A <a href=\"https:\/\/www.reuters.com\/investigates\/special-report\/usa-spying-raven\/\" target=\"_blank\" rel=\"noopener noreferrer\">Reuters report<\/a> published last month describing DarkMatter&#8217;s involvement in helping the Saudi government spy on dissidents turned a few heads at Mozilla.<\/p>\n<p>The report sparked criticism of the surveillance vendor in the months-old <a href=\"https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1427262\" target=\"_blank\" rel=\"noopener noreferrer\">Bugzilla bug report<\/a>, which led Mozilla staff to seriously consider making an exception to its normal CA approval process and decline the inclusion request despite a lack of any evidence of abuse.<\/p>\n<p>Mozilla has now opened a separate <a href=\"https:\/\/groups.google.com\/forum\/#!msg\/mozilla.dev.security.policy\/nnLVNfqgz7g\/YiybcXciBQAJ\" target=\"_blank\" rel=\"noopener noreferrer\">Google Groups discussion<\/a> to gather more feedback from the community, most of which, at the time of writing, has been negative. We were told Mozilla would most likely use this criticism as a reason to decline DarkMatter&#8217;s request in an attempt to avoid bad press and another CNNIC incident.<\/p>\n<p>&#8220;Mozilla&#8217;s Root Store Policy grants us the discretion to take actions based on the risk to people who use our products. Despite the lack of direct evidence of misissuance by DarkMatter, this may be a time when we should use our discretion to act in the interest of individuals who rely on our root store,&#8221; Mozilla said.<\/p>\n<h3>More browser coverage:<\/h3>\n<p>READ MORE <a href=\"https:\/\/www.zdnet.com\/article\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#ftag=RSSbaffb68\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Mozilla caught between a rock and a hard place on the issue of DarkMatter root certificates.<br \/>\nREAD MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":25604,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[62],"tags":[],"class_list":["post-25603","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-zdnet-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Surveillance firm asks Mozilla to be included in Firefox&#039;s certificate whitelist 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Surveillance firm asks Mozilla to be included in Firefox&#039;s certificate whitelist 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2019-02-25T00:57:02+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"770\" \/>\n\t<meta property=\"og:image:height\" content=\"578\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Surveillance firm asks Mozilla to be included in Firefox&#8217;s certificate whitelist\",\"datePublished\":\"2019-02-25T00:57:02+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/\"},\"wordCount\":878,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg\",\"articleSection\":[\"ZDNet | Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/\",\"name\":\"Surveillance firm asks Mozilla to be included in Firefox's certificate whitelist 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg\",\"datePublished\":\"2019-02-25T00:57:02+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2019\\\/02\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg\",\"width\":770,\"height\":578},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Surveillance firm asks Mozilla to be included in Firefox&#8217;s certificate whitelist\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Surveillance firm asks Mozilla to be included in Firefox's certificate whitelist 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/","og_locale":"en_US","og_type":"article","og_title":"Surveillance firm asks Mozilla to be included in Firefox's certificate whitelist 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2019-02-25T00:57:02+00:00","og_image":[{"width":770,"height":578,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Surveillance firm asks Mozilla to be included in Firefox&#8217;s certificate whitelist","datePublished":"2019-02-25T00:57:02+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/"},"wordCount":878,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg","articleSection":["ZDNet | Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/","url":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/","name":"Surveillance firm asks Mozilla to be included in Firefox's certificate whitelist 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg","datePublished":"2019-02-25T00:57:02+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2019\/02\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist.jpg","width":770,"height":578},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/surveillance-firm-asks-mozilla-to-be-included-in-firefoxs-certificate-whitelist\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Surveillance firm asks Mozilla to be included in Firefox&#8217;s certificate whitelist"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25603","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=25603"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/25603\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/25604"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=25603"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=25603"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=25603"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}