Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11The fake Trojan add-on Trojan is extremely dangerous
Security firm McAfee yesterday discovered a fake trojan as an add-on for the Firefox browser to break into users' systems.
Keylogg both mouse and keyboard
In fact, the FormSpy trojan is a keylogger that monitors all mouse and keyboard operations to steal users' personal information such as online bank account login information and links. URL in Firefox browser .
Not only is this trojan capable of stealing passwords from other applications such as ICQ, FTP, IMAP and POP3 email traffic, said security vendor McAfee. Any collected information will be sent to the attacker's IP address.
Extremely sophisticated
The trojan is part of a phishing campaign via email with electronic messages sent from the payment support office of global well-known retailer Wal-Mart, Craig Schmugar - a research expert of McAfee - said. " The emails sent in this phishing campaign contain an order number, so users can easily open those emails. If those emails are opened, the trojan will break into the system. and install two more of them - including a keylogger . "
However, the way the FormSpy trojan spreads and breaks into the system is also very different - this method can be said to be unique at this point, Schmugar said.
This trojan is fake as an additional application for open source Firefox browser. The fake FormSpy fact is the additional application Numberedlinks 0.9 - an additional application that allows users to access links by keyboard. FormSpy also uses some code of Numberedlinks to integrate fully into Firefox.
Typically, an additional Windows-based Firefox application usually displays a dialog box that allows users to confirm whether or not to install. However, the FormSpy trojan skipped that step. This trojan overrides all the information on the Firefox folder without warning the user. Users are infected without even knowing it is caused by an extra application. Even the Firefox browser confirms the application of this scam as a legitimate add-on and displays the list when accessing Tools | Extensions .
Additional? Too unsafe
Additional Firefox applications have long been considered poorly secure, especially when they do not have digital authentication. FormSpy's forgery will once again revive this issue.
" The trojan used a mechanism to get its code into the browser ," Schmugar said. " Mozilla should consider more about the security of additional applications ."
Hoang Dung
David PacYou should read it
- Trojans taking advantage of Firefox save user passwords
- Appeared trojan trojan antivirus tool for mobile
- Malware only attacks Firefox
- Buy the Maxtor hard drive that is 'promoted' Trojan
- New version of Firefox patched some additional security flaws
- What is Trojan Dropper?
- Limiting the spread of Virus, Trojan manually on Windows
- Mozilla launches Firefox VPN application beta
May be interested
- New variant Gozi Trojan raged again
since april 17, there have been more than 2,000 home users falling victim to the latest variant of gozi data theft trojan. the new gozi variant has been rated extremely dangerous with new upgrades and equipped with the ability to hide itself more highly in the face of. - What is a Trojan? How to avoid trojan attack?a trojan is not a virus, but its severity and impact are not different from viruses.
- Top 10 most dangerous viruses in Marchsecurity firm sophos has just released a list of the top 10 most dangerous viruses in march. accordingly, the clagger-i trojan has appeared for the second time in the top 10 list.
- Apple fake Trojan sales announcementsecurity firm sophoslabs has warned about the spread of a backdoor trojan called troj / downdec-a. this trojan takes advantage of an apple sales announcement (about the ipod) to attack a user's computer.
- Trojan-Downloader.Win32.Agent.meethis dangerous program is a trojan. it is a windows pe file. the size of the infected file can range from 70kb to 260kb.
- New trojans appear via MSN networkmsn messenger's instant messaging service network is currently undergoing a new wave of attacks from the dangerous trojan ircbot-rb. ircbot-rb trojan is often distributed through a msn messenger network message containing links to photos stored on web sites.
- Network security 2009: Disturbing computer virus problemscomputer virus is the most serious cyber security problem in 2009, new viruses still appear more and more complicated.
- What is Fake IP? Guide to the simplest Fake IP for Chromeprovide a concept of what is a fake id and why must fake id. the fake ip mechanism is to use a virtual private network vps to another server, so how to do fake ip in chrome. click watch now!
- 4 virus fake troll friends extremely happytroll friends and family members are happy if they are harmless jokes. today, with the development technology we always plug in the laptop, tablet pc to the smart phones. so there's nothing more fun than troll friends doing like destroying their hard drive with a fake virus.
- What is Trojan? How to avoid Trojan horse virusa trojan or trojan horse is a type of malicious code or software that can take control of a user's computer remotely.
2 viruses that destroy data
Trojan pretends to 'find a lover'
Spam uses personal style to trick e-mail users
Trojans stealing self-destruct appear
Virus attacks PC of fans of Football Fantasy games
Spread the virus to print a picture ... the owl