Slashdot Mirror

← Back to Stories (view on slashdot.org)

eFast Malware Hijacks Browser With Chrome Clone (malwarebytes.org)

Posted by timothy on from the but-it-looked-right dept.

An anonymous reader writes with a report at The Stack that: eFast Browser, a new malicious adware which disguises itself as Google Chrome, has hijacked internet users' systems in an apparent effort to serve its own ads and harvest user activity to sell to third-party advertisers. It is able to mirror the aesthetics of Chrome as it uses the same source code, available across the open-source project Chromium. Once installed, eFast places ads across existing web pages, linking to third-party e-commerce sites or other malicious platforms.

5 of 183 comments (clear)

  1. Windows only by Crowd+Computing · · Score: 4, Informative

    The program appears to be available only for Windows.

  2. LOL, w00t? by gstoddart · · Score: 4, Insightful

    It is unclear whether the browser adheres to a privacy policy

    LOL, WTF??? So, malware which rips out your browser, puts itself in its place, and then serves you ads and whatever the hell else it does ... and they're asking if it adheres to a damned privacy policy?

    Anything which installs itself like that can safely be assumed to not give a flying crap about your damned privacy.

    Why the hell they even ponder if something like this follows a privacy policy? It's malware. No, it isn't going to have a privacy policy.

    --
    Lost at C:>. Found at C.
  3. Re:lesson learned? by squiggleslash · · Score: 4, Informative

    Last time I installed Chrome (not Chromium, but actual Chrome) on Ubuntu I still had to download it from Google trusting Google's process rather than Canonical's. So no, it didn't go through some encryption protected carefully managed central repo. And, obviously, if someone can install software from Google via downloads, they can install other software via downloads, including malware.

    --
    You are not alone. This is not normal. None of this is normal.
  4. Re:lesson learned? by Gaygirlie · · Score: 4, Interesting

    GNU/Linux Distributions have a digitally-signed audit trail that goes all the way back to multiply personally-verified GPG key signatures. *NO* malware gets through that process - absolutely none. and the reason why is very simple: anyone who dares to install malware would, by virtue of the GPG-signed audit chain, be tracked back and their reputation so publicly destroyed - forever - that they would never work in the software industry ever again.

    Red herring. Efast didn't arrive to people's computers via official channels. Linux is just as vulnerable to malware when stuff is being installed via unofficial channels.

    i am sorry to have to inform you that *if* you choose to install 3rd party software, you get everything that you deserve.

    Looking down on people from your high horse doesn't grant you any wisdom, it seems. People have all sorts of different needs, like e.g. not all software is available for Linux or have a good, open-source alternative. Not even all F/OSS-software is up-to-date on official repos, either. Similarly, not being aware of all the implications of security-issues and computing in general does not mean a person "deserves" all the bad things arising from their ignorance. You just wish to toot your own horn in an effort to bolster your ego.

    why are you risking yourself to exposure to privacy violations and data violatinos? i genuinely don't understand why you would do that to yourself. perhaps someone could explain it to me.

    As said above: not all software is available under Linux, not all software have reasonable F/OSS-alternatives, not all hardware works properly under Linux and so on and so forth.

  5. Burning Question... by avandesande · · Score: 4, Funny

    Can I install the Ask toolbar on it?

    --
    love is just extroverted narcissism