Mozilla Issues Warning on Phishing Campaign Targeting Add-on Developer Accounts

Mozilla has issued an urgent security warning to Firefox add-on developers following the detection of a sophisticated phishing campaign targeting accounts on the Add-ons Mozilla Organization (AMO) platform.

The alert, published by Scott DeVaney from Mozilla’s Add-ons Community team on August 1, 2025, warns developers to exercise extreme caution when receiving emails purporting to be from Mozilla or AMO.

Phishing Campaign Details

The phishing campaign specifically targets developer accounts on addons.mozilla.org, using deceptive emails that claim account updates are required to maintain access to developer features.

According to the Mozilla warning, these fraudulent emails typically contain variations of the message stating “Your Mozilla Add-ons account requires an update to continue accessing developer features”.

The timing of this warning is particularly significant given Mozilla’s growing extension ecosystem.

The Firefox for Android platform alone has expanded from just over 400 extensions at its December launch to more than 1,000 extensions in less than five months, demonstrating the rapid growth and increasing value of the Mozilla add-on developer community.

Mozilla has provided comprehensive guidance to help developers protect their accounts from these phishing attempts.

The company strongly advises developers to avoid clicking any links contained within suspicious emails and to verify that communications originate from legitimate Mozilla-owned domains, including firefox.com, mozilla.org, mozilla.com, or their subdomains.

Technical verification is also crucial for account security. Mozilla recommends that developers ensure emails pass standard authentication checks, including SPF, DKIM, and DMARC verification through their email providers.

Additionally, developers should validate that any links in emails point to official Mozilla domains before accessing them, or preferably navigate directly to these domains rather than following email links.

The warning emphasizes that Mozilla credentials should only be entered on official mozilla.org or firefox.com websites.

This practice helps prevent credential theft, which could compromise not only individual developer accounts but also the extensions they maintain, potentially affecting thousands of Firefox users who rely on these add-ons.

For developers seeking more information about phishing detection and reporting, Mozilla has referenced helpful resources from the U.S. Federal Trade Commission and the U.K. National Cyber Security Centre.

 These organizations provide comprehensive guides on recognizing and avoiding phishing scams, complementing Mozilla’s specific recommendations for add-on developers.

Mozilla has indicated that it will continue monitoring the situation and will update its guidance as new information becomes available.

The company’s proactive approach to warning developers reflects the critical importance of maintaining security within the Firefox extension ecosystem, which serves millions of users worldwide who depend on these tools for enhanced browsing functionality.

Find this News Interesting! Follow us on Google News, LinkedIn, and X to Get Instant Updates!