pcdoctor.co.uk

Firefox Trojan Steals User’s Passwords

Posted by: admin on: October 14, 2010

Firefox Trojan Steals User's Logins

Firefox Trojan Steals User's Logins

Patchy Phisher Forces Firefox to Forego Forgetting Passwords
By Andrew Brandt

The patch adds a few lines of code, and comments-out other portions of code, that dictate whether Firefox prompts the user to save passwords when he or she logs into a secure site.

Before the infection, a default installation of Firefox 3.6.10 would prompt the user after the user clicks the Log In button on a Web page, asking whether he or she wants to save the password. After the infection, the browser simply saves all login credentials locally, and doesn’t prompt the user.

The keylogging Trojan copies itself to the system32 directory with the filename Kernel.exe; drops and registers an old, benign, deprecated ActiveX control called the Microsoft Internet Transfer Control DLL, or msinet.ocx (MD5: 7BEC181A21753498B6BD001C42A42722), which it uses to communicate with its command and control server; then it creates a new user account (username: Maestro) on the infected system.

• The webroot threat blog, who initially reported this several days ago, suggest installing the latest Firefox will fix the problem by overwriting the hijacked nsLoginManagerPrompter.js file.

Erm, until the next time one presumes?

• Download the latest version of Firefox here.

Advertisement
Tags: , , , , , , , , , , ,

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

pcdoctor.co.uk pcdoctor.co.uk Helpful tips, advice, troubleshooting, software reviews, security news, independent & impartial.

• pcdoctor.co.uk
• thepcdoctor.wordpress.com

Recent Comments

Luke on Don’t Get Me Starte…
NuWinSe7enUser on Getting started with Windows…
F1-Maniac on StartupMonitor
admin on About
kevin phillips on About

Choose A Better Browser

You don’t have to be stuck with a single browser. Download several. Test drive them for a while until you discover your favourite. Here the four most trusted recommendations according to pcdoctor.co.uk


Download Opera Web BrowserOpera
– Our favourite. The fastest and easiest to use. See our recent post, Is This The Best Internet Browser?

Download FirefoxFirefox
– Most popular browser after IE.

Download SafariSafari
– Apple’s browser is now available for PC users.

Download ChromeChrome
– Google’s relatively new addition to the pack.

RSS The Windows Club

  • OnLive Desktop Plus adds Internet Explorer to OnLive Desktop for iPad February 23, 2012
    Only a month ago, we reviewed OnLive Desktop, a cloud-based service that brought Office apps and delivered media-rich Windows 7 desktop experience to an iPad. However, when the application arrived,... For more visit The Windows Club.
  • New Bing Linked Pages will help your friends find the real you February 23, 2012
    Microsoft has launched Bing Linked Pages, a new service that allows you to link your Facebook account with Bing Search. This lets your Facebook friends to find the pages about you on the Internet,... For more visit The Windows Club.
  • Design a better Windows 8 logo for fun and win $295 February 22, 2012
    Microsoft just released a new logo for Windows 8.  The blue-colored squares did find a fan base amongst followers with many appreciating it. But is that the best? Or could it have been better? If you... For more visit The Windows Club.
  • Best Free File Compression software for Windows February 22, 2012
    Have a large file you want to compress? Or maybe you have a collection of files you want to mail someone? You can use a compression software to achieve both! If you are a Windows user, than you have... For more visit The Windows Club.
  • Hotmail’s war on Graymail – Filters out over 100 million email February 22, 2012
    We have already seen Hotmail’s new features to fight graymail introduced a couple of months back. We have also seen how Microsoft has been improving its filtering technology, with great success in... For more visit The Windows Club.
  • Microsoft’s new video on Googlighting pokes fun at Google Apps February 22, 2012
    Microsoft has released a new video accusing Google of Googlighting. Now if you are not familiar with this term, un-productivity.com, a Microsoft website, explains it as: Googlighting is what happens... For more visit The Windows Club.
  • Synergy: Share Mouse and Keyboard Between Multiple Computers February 22, 2012
    Synergy is a mouse and keyboard sharing tool. This open source and free tool allows you to share mouse and keyboard between multiple computers easily, without the need of hardware. Thus, instead of... For more visit The Windows Club.
  • Microsoft extends Windows 7 consumer support till 2020 February 21, 2012
    Just earlier today, we read that Microsoft decided to offer extended support for its Windows Vista operating system till April 2017. Now there is great news for Windows 7 consumers too! Microsoft has... For more visit The Windows Club.
  • Pencil Animation and Cartoon Software for Windows February 21, 2012
    If you are an animation lover and want to do get started with something very simple, then this animation application called Pencil is for you. With the advancements in the development tools,... For more visit The Windows Club.
  • Record video calls and enrich chatting experience with Messenger Plus! for Skype February 21, 2012
    Windows Live Messenger has many features missing and those using Skype might just be well aware of it. Arguments aside, Skype has fast become popular tool for chatting over Internet. It supports many... For more visit The Windows Club.

RSS My Technology Guide: Windows, Mac, Linux, Internet, Software, Review

  • How To Extend Windows 8 Developer Preview Expiration Date? February 21, 2012
    Microsoft has made available an update for Windows 8 Developer Preview and Windows 8 Server Developer Preview to extend its expiry date to 15 January, 2013. After installing the update, users will be able to use Windows 8 Developer Preview for one more year. Initially, Windows 8 Developer Preview was meant to expire on March 11, 2012, [...]
  • Download VLC 2.0 Now, Includes Faster Decoding, Supports Blu-ray February 19, 2012
    VLC Media Player 2.0, dubbed as Twoflower, is a major upgrade with many improvements and new features. VLC Media Player once started as an academic project back in 1996, is now no doubt one of the most popular media players. It hit version 1.0 back in 1999 and finally today, the media player reached version 2.0. Some of [...]
  • Windows 8 Logo Unveiled by Microsoft: “It’s a Window… Not a Flag” February 18, 2012
    Microsoft’s upcoming Windows 8 operating system with its “Metro UI” is definitely changing the way users used to interact with an operating system. The Metro UI seems more fitting for mobile, tablets and touch-based devices instead for desktop PCs and is clearly a sign that Microsoft is moving on. The Redmond giant is very near [...]
  • Call of Duty: Modern Warfare 3 Multiplayer Free Download This Weekend on Steam February 17, 2012
    Here’s a great news for all Steam users! Activision has a special offer for you all this weekend. From now on until 1PM PST/9PM GMT on Sunday, anyone can download Call of Duty: Modern Warfare 3 and have access to the full range of multiplayer features until Monday, unless you want to buy the game, of course. You [...]
  • Mozilla Firefox 10.0.2 Latest Version Download Links [Stable, ESR Version] February 17, 2012
    Mozilla has released Firefox 10.0.2 Stable version for Windows, Mac and Linux platforms. Important Note: Bookmark this page (Press CTRL + D) to always Get the latest update about Mozilla Firefox including direct download links for all platforms. Firefox 10.0.2 is a security update that is resolving one critical security vulnerability in the browser. The vuln […]
  • Google Chrome Latest Version Download Links [Stable Channel, Always Updated] February 16, 2012
    Google Chrome Stable Channel updated to 17.0.963.56 for Windows, Mac, Linux and Chrome Frame. Important Note: Bookmark this page (Press CTRL + D) to always Get the latest update about Google Chrome Stable Channel for all platforms. According to the Google Chrome Releases blog, this release fixes a number of stability and security issues in Chrome, and also [ […]
  • Mozilla Planning Windows 8 Metro UI Version of Firefox February 14, 2012
    Microsoft Windows 8 will be the next version of Windows operating system. For the first time with Windows 8, Microsoft wants to offer desktop, laptop, netbook, tablet, server, and media center PC users the same unified experience. It’s not a secret anymore that Microsoft Windows 8 will come with two different interface. One is the classic [...]
  • Google Drive Cloud Storage Service Launching Soon February 9, 2012
    Google Drive the long rumored cloud storage service is finally launching soon, according to WSJ. If you remember, five years back there was a rumor that Google is launching a cloud storage service. Some coined the term “G Drive” for the service but all went silent as time passed by. At that same time (in 2007), the [...]
  • Google Chrome for Android Finally Released, But Not Available To Everyone February 8, 2012
    Google Chrome has finally arrived for Android mobile devices. On Tuesday, in an official Google Chrome blog post, the company announced the release of Chrome Web browser for Android app. While announcing, the company said that like the desktop version, Chrome for Android Beta is focused on speed and simplicity. The new browser features seamless [...]
  • Rip, Save, Convert All Your DVDs, Videos Using Handbrake [Review] February 6, 2012
    Everyone of us likes watching movies and if a movie is worth keeping in our collection, we also look forward to its official DVD/Blu-ray release. After we’ve brought the movie DVD, we either want to keep a copy of it in our computer for archival purpose or want to watch it on our growing collection [...]

RSS The Register

  • Cloud altitude changing with climate: NZ study
    NASA Terra sat data reveals ten-year fall A University of Auckland analysis of ten years’ worth of NASA satellite data suggests that changing atmospheric temperatures are impacting cloud formation, with fewer clouds forming at the highest altitudes.…
  • Oracle extends Linux support to 10 years
    Dangles Ksplice lure for Red Hat customers Oracle has reaffirmed that it's in the Linux business to stay by extending the support lifecycle of its own-brand build to ten years, and tempting Red Hat users with a trial offer of its Ksplice patching system.…
  • Astrolabe backs off, timezone database safe
    You can’t copyright facts When you next tell a friend what time tomorrow’s sunrise is expected, you can do so without worrying whether you need to field a lawsuit. US horoscope software company Astrolabe has withdrawn the lawsuit which last year saw the Unix timezone database shuttered.…
  • Intel joins The Document Foundation, pushes LibreOffice
    Redmond pines for bygone WinTel hegemony Intel has begun distributing the open source LibreOffice suite via its online AppUp Store, and has joined the board of The Document Foundation (TDF) – a decision that will have many of the Redmond old-guard fuming.…
  • Apple files patent for 'polished meteorite' keyboard
    Thin, light, 'aesthetically pleasing' Apple has filed a patent application for a key-travel design that it claims will allow for a "thin profile, aesthetically pleasing keyboard."…
  • Brocade's profits collapse is over
    But Klayko's crew has work to do Fibre Channel networking giant Brocade has kissed its profits collapse goodbye with a roaring first fiscal 2012 quarter.…
  • Feds apply for DNSChanger safety net extension
    Apply for extension before millions of infected PCs are disconnected Federal authorities have applied for permission to extend the operation of a safety net that allows machines infected by the DNSChanger Trojan to surf the net as normal beyond a 8 March deadline.…
  • Who's adding DRM to HTML5? Microsoft, Google and Netflix
    Tag team's copy protection plan 'unethical' With tech companies abandoning the proprietary Flash and Silverlight media players for HTML5, it was inevitable somebody would try to inject DRM into the virgin spec.…
  • White Spaces squeak though US Payroll Tax Bill
    $7bn for emergency services, $15bn for tax cuts Both houses of the US government have now approved bills to auction off $22bn worth of radio spectrum, but white spaces will remain licence-free – much to the delight of the industry.…
  • Telcos, mobile pushers muck in to trial 'clever' Wi-Fi
    Hotspot 2.0: We don't need no skeenkin' logon Fourteen of the largest telecommunications companies around the world have participated in successful trials of Hotspot 2.0, which made it easier for them to use Wi-Fi.…
  • Everything Everywhere pushes towards 4G, wants to show off its wad
    HSPA+ in six months, LTE by year-end Everything Everywhere is planning to deploy 4G into the UK by the end of 2012, but mostly just to remind everyone how much it is investing in UK infrastructure.…
  • Smart has high IOPS for super-fast, smarter SSDs
    Reads at a hell of a lick A super-fast random reading SSD has been launched by Smart Modular Technlogies' spun-off business unit.…
  • Dimension Data takes on all cloud comers
    Public, private, any way you want it South Africa–based systems integrator Dimension Data is launching a mashup of its IT services and the cloudy infrastructure it acquired last year along with OpSource, in a new offering it calls Cloud Solutions.…
  • Samsung warms up smartphone operated oven
    Tap and swipe for steamin' snacks And it's over to Samsung for the latest in kitchen kit for lazy-arse cooks: a smartphone-controlled, app-operated oven.…
  • Brits guard Facebook passwords more than work logins – survey
    Too many of the damn things to remember A survey of UK consumers revealed many are far more careful with their social network login credentials than passwords that grant access to corporate systems.…
  • Apple vs Bank of China in iPad Shanghai showdown
    Now Proview and state backers want talks after court setback Apple's IPAD trademark fight in China has taken on a whole new dimension: its opponent isn't merely defunct monitor biz Proview, but the state-backed Bank of China.…
  • Virgin Media boards the 4G train
    Is that a spectrum auction catalogue in your pocket? Exclusive  Virgin Media is planning trials of 4G telephony in several UK cities, dropping fibre-connected LTE Small Cells into urban areas, to see how easily decent coverage could be established.…
  • LOHAN's fantastical flying truss cleared for lift-off
    Airborne handling test imminent Our Low Orbit Helium Assisted Navigator experimental flying truss is just about poised for lift-off, but before it leaves the ground we thought we'd update LOHAN fans on the proposed test rigs.…
  • Hey Commentard! - or is that Commenter?
    You decide. OK, we decide Poll  Last month a Reg reader contacted us via our Twitter account to complain about the use of the word "freetard", on the grounds that, as an analogue of "retard", the word was derogatory to people with mental handicaps.…
  • Capita gets fat slower as government slims down
    Subdued 2011, looking good for 2012 The government's austerity program has meant tightened belts at Capita, with the services giant citing reduced public sector revenues as a key reason for subdued revenue growth and a slight dip in pre-tax profits in 2011.…
wordpress counter
wordpress stats

Blog at WordPress.com.

Theme: Albeo by Design Disease.

Follow

Get every new post delivered to your Inbox.