Търсене в помощните статии

Избягвайте измамите при поддръжката. Никога няма да ви помолим да се обадите или изпратите SMS на телефонен номер или да споделите лична информация. Моля, докладвайте подозрителна активност на "Докладване за злоупотреба".

Научете повече

What are the specifics of the Facebook malware reported in NYT of August 26, 2013 Bits column?

  • 3 отговора
  • 1 има този проблем
  • 5 изгледи
  • Последен отговор от philipp

more options

Here is a link to the article:

http://bits.blogs.nytimes.com/2013/08/26/malicious-software-poses-as-video-from-a-facebook-friend/?nl=todaysheadlines&emc=edit_th_20130827

According to this, Firefox can be infected and typical virus/malware programs are not effective in addressing the problem because the malware blocks them.

I was looking for an alert or specific discussion.

Here is a link to the article: http://bits.blogs.nytimes.com/2013/08/26/malicious-software-poses-as-video-from-a-facebook-friend/?nl=todaysheadlines&emc=edit_th_20130827 According to this, Firefox can be infected and typical virus/malware programs are not effective in addressing the problem because the malware blocks them. I was looking for an alert or specific discussion.

Избрано решение

hello, it's probably important to add that this malware doesn't spread by using a vulnerability in chrome or firefox but by social engineering & by tricking users into installing malicious software under a false pretext. this by itself isn't anything unusual and happens all over the web all the time - the vector of infections seems to be quite effective though, since you'll be more likely to install something that comes from one of your social contacts than from a random website (which might claim a download is necessary because a plugin is missing or by impostoring a false update notice).

if it really is only hooking into firefox as an addon it should be fairly easy to remove - just press the shift key while firefox is launching in order to enter safe mode, go to firefox > addons > extensions and remove anything there that looks suspicious & you haven't added manually: Troubleshoot extensions, themes and hardware acceleration issues to solve common Firefox problems

if your system has been compromised it is also important to change all your stored passwords...

Troubleshoot Firefox issues caused by malware

edit: the addon in question got already blocked by mozilla: https://addons.mozilla.org/firefox/blocked/i444

Прочетете този отговор в контекста 👍 1

Всички отговори (3)

more options

Избрано решение

hello, it's probably important to add that this malware doesn't spread by using a vulnerability in chrome or firefox but by social engineering & by tricking users into installing malicious software under a false pretext. this by itself isn't anything unusual and happens all over the web all the time - the vector of infections seems to be quite effective though, since you'll be more likely to install something that comes from one of your social contacts than from a random website (which might claim a download is necessary because a plugin is missing or by impostoring a false update notice).

if it really is only hooking into firefox as an addon it should be fairly easy to remove - just press the shift key while firefox is launching in order to enter safe mode, go to firefox > addons > extensions and remove anything there that looks suspicious & you haven't added manually: Troubleshoot extensions, themes and hardware acceleration issues to solve common Firefox problems

if your system has been compromised it is also important to change all your stored passwords...

Troubleshoot Firefox issues caused by malware

edit: the addon in question got already blocked by mozilla: https://addons.mozilla.org/firefox/blocked/i444

Променено на от philipp

more options

Thanks Philipp,

The information in your edit about the blocked addon was what I expected to find before posting the question. I searched the term "Facebook malware" and checked a couple of the articles that were suggested before posting the question.

May I ask how you came to locate it so I can find such things in the future?

more options

i found it by looking into the block request of latest entry of blocklisted addons - this list is generally available under https://addons.mozilla.org/firefox/blocked