I found a fake Firefox update

Firefox Firefox Last updated: 06/06/2022 82% of users voted this helpful
No one has helped translate this article yet. If you already know how localizing for SUMO works, start translating now. If you want to learn how to translate articles for SUMO, please start here.

We have received reports from many users who were interrupted in their browsing experience and who got redirected to a fake page pretending to provide an "important", "urgent" or "critical" update. Some people have also reported seeing ads prompting them to download a Firefox update or occurrences of fake Firefox requires a manual update pages that try to trick them into installing a malicious extension. These are scam tactics to trick you into installing malware!

What is a fake Firefox update notice?

To our knowledge, fake update notices are a form of "malvertising". Those fake notices get triggered by code contained in ads that are displayed on otherwise legitimate websites you are visiting and get spread through advertisement networks.

This is an example of what a fake Firefox update notice might look like. These are hosted on randomly generated and quickly changing domains:

Fake Important Firefox Update available

Firefox has an automated background update mechanism that will never prompt you to manually download and execute a file, except in the case of a Heartbeat notification (see below). You can always manually check for Firefox updates - to learn how, see Update Firefox to the latest release.

Heartbeat notifications

If you start Firefox and see a notification bar with a Heartbeat HeartbeatIcon icon, the message Your Firefox is critically out of date. An update is required to stay secure and an Update Now button, this is a legitimate Firefox update notice and you should update Firefox. To learn more about the "Heartbeat" feature, see the article Rate your Firefox experience, surveys and out of date messages (Heartbeat) and this Mozilla Wiki page.

What you can do if you spot a fake update notice?

  1. Never click on these fake update notices.
  2. Never save or open/run unsolicited files!
  3. Install an ad-blocking add-on from addons.mozilla.org to avoid such kind of malvertising in the future.
  4. Report web forgeries to the Google Web Forgery site.

What you can do to prevent malware on your computer

  1. Run a malware scan on your computer to make sure your computer was not infected. (See Troubleshoot Firefox issues caused by malware.)
  2. Avoid downloads from unreliable sources in the future.
  3. Use What happened to Tracking Protection? (enabled in Private Browsing by default).

To learn more about malware

Fake updates have been spotted for other popular browsers. Although we cannot root out every bad actor on the web, we are continuing to improve Firefox's defenses against malware. Knowing how to recognize and report such frauds helps us keep the Internet open and safer.

Was this article helpful?

Please wait...

These fine people helped write this article:

Illustration of hands


Grow and share your expertise with others. Answer questions and improve our knowledge base.

Learn More