💔 Mozilla: How can we get up in the morning and make it even worse without much effort

jbz@indieweb.social

💔 Mozilla: How can we get up in the morning and make it even worse without much effort

https://www.quippd.com/writing/2025/12/08/mozillas-betrayal-of-open-source-googles-gemini-ai-is-overwriting-volunteer-work-on-support-mozilla.html

#mozilla #ai #opensource

fizzo@chaos.social

@jbz Mozilla makes my blood boil 😡️ Yesterday I switched to Librewolf (Firefox fork) + Linkding for favorites and deleted my Mozilla account.
It's hard not to use Firefox or a fork, but at least I can make the account count go down a bit. #mozilla

yoasif@mastodon.social

@fizzo @jbz FWIW, Sync is encrypted end-to-end, so there really is no need to leave sync if you are concerned about privacy.

job@pleroma.envs.net

@yoasif E2EE, until your password for Firefox Accounts gets compromised (anyone with the FxA password can decrypt your sync key stored in Mozilla's servers. Even if their device is not synced and the account has no synced devices). And knowing that many people will still reuse their passwords across different services, this is not a remote possibility. Mozilla can still be forced by authorities to hand over a user's sync key, and if said authorities know that their target has likely reused their password for Firefox Sync with another website that got a breach, well that user can just hope that there's nothing incriminating in the synced data...

They shouldn't have replaced Sync 1.1 (aka Weave) with its J-PAKE where the sync key never leaves the synced device (the only thing the server will have is encrypted data it can't read, even if the sync password gets compromised).

@fizzo @jbz