Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


08:09 PM
George V. Hulme
George V. Hulme

Firefox Provides Increased Security Over Internet Explorer? Not So Much.

It's been reported that the Firefox Web browser has been distributing a Trojan horse application with the Vietnamese language pack. No one is sure how many users may have unwittingly downloaded the malware.

It's been reported that the Firefox Web browser has been distributing a Trojan horse application with the Vietnamese language pack. No one is sure how many users may have unwittingly downloaded the malware.The fix is easy. Anyone who has downloaded the Firefox Vietnamese language pack since Feb. 18, 2008, should run a full-system antivirus scan and disable the plug-in. Make sure the AV engine can spot a critter called Trojan.Win32.Xorer.

In this blog entry by The Washington Post's Brian Krebs, he quoted Mozilla's chief security officer, Window Snyder, as saying that the Trojan "usually results in the user seeing unwanted ads, but may be used for more malicious actions."

Answering how this malware, despite Mozilla conducting virus scans of all add-ons uploaded to its servers, got so far through the distribution channel isn't so easy. And Snyders' seemingly careless attitude in this Macworld story is downright frightening.

Snyder did not know exactly how the adware code was added, but she said that this kind of problem could affect any software provider -- open source or not. "In most software development environments the developers aren't kept in a dark cave," she said. "They browse the Web or take those laptops to a coffee shop "

"It's just a fact of life," she added.

Maybe so. But that doesn't mean that there shouldn't be better checks in place to catch such incidents. We all deserve it. And we all certainly deserve more than such a casual attitude with this sort of breach of trust.


Recommended Reading:

Comment  | 
Print  | 
More Insights
Threaded  |  Newest First  |  Oldest First
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/10/2020
Researcher Finds New Office Macro Attacks for MacOS
Curtis Franklin Jr., Senior Editor at Dark Reading,  8/7/2020
Lock-Pickers Face an Uncertain Future Online
Seth Rosenblatt, Contributing Writer,  8/10/2020
Register for Dark Reading Newsletters
White Papers
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: They said you could use Zoom anywhere.......
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2020-08-13
A timeout during a TLS handshake can result in the connection failing to terminate. This can result in a Niagara thread hanging and requires a manual restart of Niagara (Versions,,, and Niagara Enterprise Security (Versions 2.4.31, 2.4.45, to corr...
PUBLISHED: 2020-08-13
An issue was discovered on Spirent TestCenter and Avalanche appliance admin interface firmware. An attacker, who already has access to an SSH restricted shell, can achieve root access via shell metacharacters. The attacker can then, for example, read sensitive files such as appliance admin configura...
PUBLISHED: 2020-08-13
For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature
PUBLISHED: 2020-08-13
For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery.
PUBLISHED: 2020-08-13
A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.10.21 allows remote authenticated attackers to execute arbitrary SQL commands via the TPF_XPAR1 parameter.