Slashdot Mirror


Spyware Disguises Itself as Firefox Extension

Juha-Matti Laurio writes "The antivirus specialists at McAfee have warned of a Trojan that disguises itself as a Firefox extension. The trojan installs itself as a Firefox extension, presenting itself as a legitimate existing extension called numberedlinks. It then begins intercepting passwords and credit card numbers entered into the browser, which it then sends to an external server. The most dangerous part of the issue is that it records itself directly into the Firefox configuration data, avoiding the regular installation and confirmation process."

9 of 247 comments (clear)

  1. Re:Not a vulnerability. by kfg · · Score: 5, Funny

    I refuse to use this trojan until it's ported to Linux.

    We have to send a message to developers that we want our apps native.

    KFG

  2. Break extension by Anonymous Coward · · Score: 5, Funny

    In next version of Firefox, the extension will be broken anyways. Mozilla breaks extension every new release. :D

  3. Thankfully, I'm running IE by Anonymous Coward · · Score: 5, Funny

    Which makes me invulnerable to snooping for credit card numbers as all my accounts are empty and my credit rating is ruined.

  4. Spyware Disguised as an MSIE Extension by krell · · Score: 5, Funny

    It could have been worse, like spyware disguised as a Microsoft Internet Explorer extension. That's sort of like Nixon wearing a Nixon mask.

    --
    Where were you when the voynix came?
  5. Re:Not a vulnerability. by 140Mandak262Jamuna · · Score: 5, Funny
    Come on, You dont even have to be a script kiddie to write malware for Linux.

    This is how it works:

    First create an executable that will do bad things. It could even be a csh script. Then send emails to all and sundry like this and attach that file"

    Dear Linuxuser,

    This is a virus/trojan/worm/malware for Linux. It works on the honor system. Please forward the attachment to all addresses in your .mailrc first and then save it to disk, chmod +x and sudo it. Thank you.

    Attachment: malware

    --
    sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
  6. Re:Not a vulnerability. by zo1dberg · · Score: 5, Funny

    This is the one thing that keeps people from running Linux on their desktops! We normal users don't want to fiddle around with the commandline and stuff like that, we need a point-and-click-interface to compromise the security of our computers! Trust me, until this is fixed, Linux has no hope of ever becoming a serious competitor to Windows.

  7. Re:Not a vulnerability. by Not+The+Real+Me · · Score: 5, Funny

    Good point.

    A friend of mine has certifications as an MCSE and a CNE. When I tell him to run "ipconfig /all" and "route print" (on his WinXP machine), the look of consternation and confusion on his face is priceless.

  8. make it open source by kdemetter · · Score: 5, Funny

    just send the source code in a nice tarball .

    that way it's open source and people can improve it .

  9. Re:Not a vulnerability. by PsychoSid · · Score: 5, Funny

    csh ! What century have I entered this time.