Firefox gets a taste of malware

— 12:30 PM on July 26, 2006

Firefox is getting its first tastes of malware thanks to a new Trojan Horse that masquerades as an extension for the browser. Security firm McAfee says the Trojan, which is dubbed FormSpy, relies on another Trojan known as Downloader-AXM to download and install itself.

Once downloaded, FormSpy installs itself as a Firefox extension.

The program appears as "NumberedLinks 0.9" extension, McAfee said. The extension normally would allow a user to navigate links by numbers using the keyboard rather than a mouse.

Then, FormSpy can transmit information in a Web browser to another Web site, which could include credit card numbers, passwords, and electronic banking pin numbers, according to McAfee.

McAfee's FormSpy security advisory doesn't reveal which versions of Firefox are vulnerable, but it ranks the Trojan as a "low" risk and says it can be removed with the latest engine and definitions for the company's anti-virus software.
Like what we're doing? Pay what you want to support TR and get nifty extra features.
Top contributors
1. BIF - $340 2. Ryu Connor - $250 3. mbutrovich - $250
4. YetAnotherGeek2 - $200 5. End User - $150 6. Captain Ned - $100
7. Anonymous Gerbil - $100 8. Bill Door - $100 9. ericfulmer - $100
10. dkanter - $100
Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.