elgato
Joined: 24 Feb 2005
Posts: 16923
Location: Texas
|
| Posted: Mon Feb 08, 2010 11:08 am Post subject: Mozilla Firefox hit by malware add-ons |
|
|
Mozilla says a pair of malicious Firefox add-ons slipped by its security checks and infected approximately 4,600 Windows computers over the last five months.
The browser add-ons, described my Mozilla as “experimental,” contained a Trojan horse that executed when Firefox started and infected the host computer.
According to a post on the Mozilla add-ons blog, the malicious add-ons were Version 4.0 of Sothink Web Video Downloader and all versions of Master Filer.
The Sothink Web Video Downloader contained Win32.LdPinch.gen, and Master Filer contained the Win32.Bifrose Trojan. Both add-ons have been been disabled but Mozilla said they were active since September 2009.
more.. link to news article |
|
elgato
Joined: 24 Feb 2005
Posts: 16923
Location: Texas
|
| Posted: Wed Feb 10, 2010 5:03 pm Post subject: Re: Mozilla Firefox hit by malware add-ons |
|
|
Update:
"Mozilla jumped the gun, add-on malware turns out to be false-positive"
Late last week Mozilla reported that it had discovered two malware-ladened add-ons for the Firefox browser being offered on the official download site. It now turns out that one of add-ons labeled as toxic was in fact clean.
The add-on in question was Sothink Video Downloader 4.0. This add-on was incorrectly labeled as malware because one of the scanners that Mozilla had used to check all the add-ons available for download threw up a false-positive.
According to a Sothink spokesperson, the error arose because of the tool used to encrypt the download (a tool called Armadillo, which has been behind other false-positive reports because it is sometimes used by malware writers to encrypt toxic code).
more.. link to news article |
|
