Jump to content



Photo

Internet users tricked into downloading 'Firefox' spyware


  • Please log in to reply
2 replies to this topic

#1 compl3x

compl3x

    Neowinian Senior

  • 8,117 posts
  • Joined: 06-December 09
  • Location: Melbourne, Australia
  • OS: Windows 7
  • Phone: Samsung Galaxy S4

Posted 03 May 2013 - 01:18

The Mozilla Foundation has accused UK software group Gamma International of tricking internet users into downloading surveillance software by falsely associating it with the Firefox name.

Finfisher is legitimate monitoring software thought to be used by governments to covertly obtain data.

But it can be installed unknowingly by computer users and is often disguised as an update to a well-known browser - like Firefox.

The University of Toronto research group, The Citizen Lab, says it believes Finfisher servers are currently active in 36 countries, including Australia.

An excerpt from a report by the group released this week, titled For Their Eyes Only: The Commercialisation of Digital Spying, states:


The booby-trapped document embeds a copy of FinSpy that masquerades as legitimate Mozilla Firefox software.

This is not the first time that a FinSpy sample has used the "Mozilla Firefox" product name to masquerade as legitimate software.

Samples from the FinSpy campaign targeting Bahraini activists last year used an assembly manifest that impersonated Mozilla's Firefox browser.



In 2011, the BBC found documents in Egypt's state security building, which suggested Gamma International offered to supply Finfisher to the Egyptian government to monitor activists.

The company denied it did, but files seen by the BBC describe a five-month trial which included successful access to email accounts and the recording of encrypted Skype calls.

The Mozilla Foundation has now sent a cease and desist letter, warning Gamma International not to use the Firefox name, as camouflage for the surveillance program.

"Our brand and trademarks are used by the spyware as a method to avoid detection and deletion," Mozilla chief privacy officer Alex Fowler said in a statement.

"As an open source project trusted by hundreds of millions of people around the world, defending Mozilla's trademarks from this abuse is vital to our brand, mission and continued success."



Source


#2 Raa

Raa

    Resident president

  • 12,554 posts
  • Joined: 03-April 02
  • Location: NSW, Australia

Posted 03 May 2013 - 01:28

Well that's that, everyone should stop using Firefox immediately! :p

#3 Growled

Growled

    Neowinian Senior

  • 41,508 posts
  • Joined: 17-December 08
  • Location: USA

Posted 03 May 2013 - 01:30

Oops. Now they'll have to find some other name to fool people with.