Slashdot Mirror

← Back to Stories (view on slashdot.org)

'Greasemonkey' Malware Targets Firefox

Posted by CmdrTaco on from the oh-this-can't-end-well dept.

snydeq writes "Researchers have discovered a new type of malware that collects passwords for banking sites but targets only Firefox. The malware, dubbed 'Trojan.PWS.ChromeInject.A,' sits in Firefox's add-ons folder, registering itself as 'Greasemonkey,' the well-known collection of scripts that add functionality to Web pages rendered by Firefox. The malware uses JavaScript to identify more than 100 financial and money transfer Web sites, including PayPal, collecting logins and passwords, which it forwards to a server in Russia. Trojan infection can occur via drive-by download or download duping."

2 of 370 comments (clear)

  1. Re:DO-NOT "Remember Passwords" by maxwell+demon · · Score: 5, Informative

    I guess the malware remenmbered those passwords itself, so not storing them in the password manager wouldn't help.

    IMHO the fact that you can use plugins with Firefox means that there should be an extra security barrier inside Firefox that disallows extensions to get passwords (e.g. when accessing the password lines, it would just get the stars which are also displayed on the screen).

    --
    The Tao of math: The numbers you can count are not the real numbers.
  2. Re:PC ONLY? by thtrgremlin · · Score: 5, Informative
    Since reading the article is for loosers anyway...

    This [plugin] is intended to be delivered onto a compromised computer system by other malware for subsequent download into Mozilla Firefox's Plugin folder

    Since the computer need already be compromised... sure you can draw your own conclusion on that one :)

    --
    Want Big Business out of government? Take away the incentive and start by getting government out of big business!