pcdoctor.co.uk

Firefox Trojan Steals User’s Passwords

Posted by: on: October 14, 2010

Firefox Trojan Steals User's Logins

Firefox Trojan Steals User's Logins

Patchy Phisher Forces Firefox to Forego Forgetting Passwords
By Andrew Brandt

The patch adds a few lines of code, and comments-out other portions of code, that dictate whether Firefox prompts the user to save passwords when he or she logs into a secure site.

Before the infection, a default installation of Firefox 3.6.10 would prompt the user after the user clicks the Log In button on a Web page, asking whether he or she wants to save the password. After the infection, the browser simply saves all login credentials locally, and doesn’t prompt the user.

The keylogging Trojan copies itself to the system32 directory with the filename Kernel.exe; drops and registers an old, benign, deprecated ActiveX control called the Microsoft Internet Transfer Control DLL, or msinet.ocx (MD5: 7BEC181A21753498B6BD001C42A42722), which it uses to communicate with its command and control server; then it creates a new user account (username: Maestro) on the infected system.

• The webroot threat blog, who initially reported this several days ago, suggest installing the latest Firefox will fix the problem by overwriting the hijacked nsLoginManagerPrompter.js file.

Erm, until the next time one presumes?

• Download the latest version of Firefox here.

About these ads
Tags: , , , , , , , , , , ,

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

pcdoctor.co.uk pcdoctor.co.uk Helpful tips, advice, troubleshooting, software reviews, security news, independent & impartial.

• pcdoctor.co.uk
• thepcdoctor.wordpress.com

Recent Comments

Luke on Don’t Get Me Starte…
NuWinSe7enUser on Getting started with Windows…
F1-Maniac on StartupMonitor
admin on About
kevin phillips on About

Choose A Better Browser

You don’t have to be stuck with a single browser. Download several. Test drive them for a while until you discover your favourite. Here the four most trusted recommendations according to pcdoctor.co.uk


Download Opera Web BrowserOpera
– Our favourite. The fastest and easiest to use. See our recent post, Is This The Best Internet Browser?

Download FirefoxFirefox
– Most popular browser after IE.

Download SafariSafari
– Apple’s browser is now available for PC users.

Download ChromeChrome
– Google’s relatively new addition to the pack.

RSS The Windows Club

  • Microsoft makes fun of Apple and Siri in new Windows 8 commercial May 23, 2013
    The Windows Phone Nokia Lumia 920 advertisement was one of a new kind from Microsoft where it boasts about the advantage of a Windows Phone against competitors’ devices. This slick Windows 8 ad is... For more visit TheWindowsClub.com.
  • Facebook popularity dipping among Teenagers; Twitter gaining May 23, 2013
    We love Facebook, don’t we?  It is still the most popular social networking site today. But often you will find people complaining about non-replies, delayed response, non-acceptance of a requests,... For more visit TheWindowsClub.com.
  • Twitter introduces Login Verification for better protection May 23, 2013
    In recent times, we have been hearing about several websites data base being compromised – and Twitter wasn’t an exception. Twitter accounts too are being compromised by mail phishing... For more visit TheWindowsClub.com.
  • SkyDrive Pro sync client for SharePoint 2013 users now available May 22, 2013
    Software giant Microsoft has made available for download SkyDrive Pro sync client for Windows. This very new SkyDrive Pro Client for Windows, that allows users of SharePoint 2013 and Office 365 users... For more visit TheWindowsClub.com.
  • PrivacyChoice acquired by AVG May 22, 2013
    AVG is one of the better known security software companies which provides security software for various platforms.. The security firm has added another feather to its cap by acquiring and online... For more visit TheWindowsClub.com.
  • Microsoft warns you to stay away from these PDF files May 22, 2013
    A common way of infecting computers with malware is by exploiting software vulnerabilities. These days Java and Adobe Flash are always in the news for these very reasons. What is not so commonly... For more visit TheWindowsClub.com.
  • Xbox One Anthem video features Bill Gates, Steven Spielberg and more May 22, 2013
    Microsoft finally revealed its all new Xbox One gaming console in a special press event at Redmond headquarters today. The event also featured a new introductory Xbox anthem video featuring Bill... For more visit TheWindowsClub.com.
  • Re-designed Google+ for Mobile Phones May 22, 2013
    Google+, Google’s very own social network service aims to make sharing on the web more like sharing in real life. As such, it received a new update for its mobile version. The new update boasts... For more visit TheWindowsClub.com.
  • Combined efforts of Microsoft and Janet brings Cloud Computing to British Universities May 22, 2013
    The joint venture of Microsoft and Janet, the research and education network has led to the rendering of cloud based services based on Windows Azure to more than 18 million teachers and students in... For more visit TheWindowsClub.com.
  • Microsoft announces new Kinect device for Xbox One May 22, 2013
    During a special press event today at the Redmond headquarters, Microsoft took to the stage to reveal the next generation gaming console named as Xbox One. Coupled with this announcement, Microsoft... For more visit TheWindowsClub.com.

RSS My Technology Guide: Windows, Mac, Linux, Internet, Software, Review

  • Back Up Your Valuable Data with Carbonite May 17, 2013
    Technology is progressing each day. People are now relying more on their computers, laptops and mobiles for their day-to-day work and thus are saving gigabytes of data. Digital data is more personal than ever. We now keep our pictures, videos, important documents and every other small thing saved on hard disks, SSDs, memory cards and [...]Continue reading Ba […]
  • Microsoft Windows Blue Will Be Windows 8.1, Will Be Free Update From Windows Store May 16, 2013
    Microsoft has some fresh new updates about its upcoming next Windows update titled Windows Blue. Microsoft’s Tami Reller (Chief Marketing Officer and Chief Financial Officer, Windows), while speaking at the JP Morgan Technology, Media and Telecom Conference, announced that the upcoming next Windows version previously called Windows Blue will be officially ca […]
  • Public WiFi Networks: A Hotbed For Hacker Activity May 4, 2013
    Most people who constantly use public WiFi networks must understand the importance of having proper security measures to avoid exposing sensitive data. A recent report by ThreatMetrix found that banking information and personal files are vulnerable through WiFi networks, like those which are available open at the local coffee shop round the corner. The threa […]
  • LivingSocial Hacked: 50 Million Customer Names, Emails, Encrypted Passwords Leaked April 28, 2013
    LivingSocial is the second biggest online daily deals website after Groupon in the US. LivingSocial is owned in part by Amazon has announced that it has been hacked. The attackers got away with data which includes names, email addresses, and encrypted passwords of 50 million customers. That’s a huge amount of data which is now [...]Continue reading LivingSoc […]
  • Get Office 365 Free for Three Months and 20 GB of SkyDrive Storage March 11, 2013
    Microsoft’s new range of office suite, Office 2013 and Office 365 are already released. To promote the new Office 365 office suite, Microsoft has started a brand new campaign. The campaign specifically targets students who might want to give Office 365 University a try. Through this special promotion, Microsoft is offering Office 365 University three-month [ […]
  • Microsoft’s Windows Blue Might Be Launched In August, May Have Hit Milestone 1 February 20, 2013
    Microsoft is already working on the next version of Windows, codename Windows Blue some are referring it as Windows 9 (but it isn’t actually). Windows Blue is expected to be launched this year. This rumor may be true as reports are emerging that Windows Blue is already ready to enter M2 development stage. So, it’s [...]Continue reading Microsoft’s Windows Bl […]
  • Adobe Flash Player Security Updates Available, Update Now February 9, 2013
    Adobe has released security updates for Adobe Flash Player for all platforms. Adobe Flash Player 11.5.502.149 security update is released for Windows and Macintosh, Adobe Flash Player 11.2.202.262 for Linux, Adobe Flash Player 11.1.115.37 for Android 4.x, and Adobe Flash Player 11.1.111.32 for Android 3.x and 2.x are released. Security update for Windows and […]
  • Microsoft Offers Windows 8 Pro Upgrade To Students For $70 January 31, 2013
    Microsoft’s Windows 8 Pro Upgrade offer for general users expired on January 31, 2013, Windows 8 Pro now retails for $199.99. Microsoft has announced a new promotion exclusively for students across 50 countries. The Windows 8 student offer, through which students in the U.S. and in 49 additional countries can purchase Windows 8 Pro upgrade license for [...]C […]
  • Disable Java In Your Browser, On Windows, Mac OS X Platform [Complete Tutorial] January 22, 2013
    With more and more zero-day vulnerabilities are uncovered which is affecting Oracle’s Java plugin, users are now often asking how to disable Java or remove Java from their Windows computers or Mac platform. First, let us clear the confusion which arises among most users about Java and JavaScript, keep in mind that both are different. Java is a programming [. […]
  • Download Kaspersky Now for Windows 8 for Free January 16, 2013
    If you are using Kaspersky Internet Security 2013 or Kaspersky Anti-Virus 2013 on your Windows 8 system, you may be excited to know about Kaspersky Now. Kaspersky Now is a free Windows 8 app developed by Kaspersky to keep its customers up to date with the latest security news, threat alerts and expert views. Other than keeping you [...]Continue reading Downl […]

RSS The Register

wordpress counter
wordpress stats

Blog at WordPress.com.

Theme: Albeo by Design Disease.

Follow

Get every new post delivered to your Inbox.

%d bloggers like this: