diff --git a/Appendix-C:-Test-Sites.md b/Appendix-C:-Test-Sites.md
index 726cbd8..43fe19d 100644
--- a/Appendix-C:-Test-Sites.md
+++ b/Appendix-C:-Test-Sites.md
@@ -36,8 +36,9 @@ If you would like to submit a test page to be added to this list, please post th
 - [How's My SSL](https://www.howsmyssl.com/) - **h**ttps://www.howsmyssl.com/
 - [Heartbleed](https://filippo.io/Heartbleed/) - **h**ttps://filippo.io/Heartbleed/
 - [Freak Attack](https://freakattack.com/clienttest.html) - **h**ttps://freakattack.com/clienttest.html
-   * Firefox is not vulnerable to this attack
+   * Firefox is not vulnerable to this attack <sup>[source](http://www.eweek.com/blogs/security-watch/microsoft-admits-windows-users-are-vulnerable-to-freak-attacks)</sup>
 - [Logjam](https://weakdh.org/) - **h**ttps://weakdh.org/
+   * Firefox 39+ is not vulnerable <sup>[source](https://www.mozilla.org/security/advisories/mfsa2015-70/)</sup>
 - [Symantec](https://cryptoreport.websecurity.symantec.com/checker/views/sslCheck.jsp) - **h**ttps://cryptoreport.websecurity.symantec.com/checker/views/sslCheck.jsp
 - [GRC Fingerprint](https://www.grc.com/fingerprints.htm) - **h**ttps://www.grc.com/fingerprints.htm
    * EV [Extended Validation] / SSL Interception check [Do you see a bright green padlock?]