Mozilla removed nearly 200 malicious Firefox add-ons in just 2 weeks

In just the past 2 weeks, the Mozilla browser extensions management team has launched a large-scale scanning campaign and removed a total of 197 'caught' Firefox add-ons that have been executing code. malicious, steals user data or uses Obfuscation encryption to hide malicious source code.

These extensions have been banned and removed from the Mozilla Add-on (AMO) to prevent users from accessing them. In addition, Mozilla has also disabled applications named in the list from the browser of the user who installed them. This approach of Mozilla has received many praises from the security community as well as Firefox users.

The majority of the ban applies to 129 extensions developed by 2Ring, a relatively famous B2B software provider. The reason given by Mozilla is because these developer extensions download and execute unknown code on a user's computer from a remote server.

According to Mozilla's regulations, third-party Firefox add-ons are forced to fully contain all their code, not downloading dynamic code from remote servers. Mozilla has recently begun enforcing this policy strictly across its complementary ecosystem.

Mozilla removed nearly 200 malicious Firefox add-ons in just 2 weeks Picture 1

In addition to downloading and executing remote code, the ban also applies to Mozilla collecting illegal user data and other malicious behaviors, such as surreptitiously installing software. malware in a user's browser.

In particular, Mozilla will thoroughly handle the behaviors using Obfuscation core - a technique to create source code or machine code is extremely difficult to read in order to hide malicious behavior.

However, utility developers can completely file a ban and remove malicious behavior to reappear on the Mozilla Add-on.