Firefox Malware

You may have already heard of this, but there is a malware which goes around disguised as a Firefox extension. I have no details regarding the malicious code but to be honest, I am not surprised at all. In fact, I wonder why it took so long for the bad guys to figure that Firefox is an excellent malware delivery platform. Usually they are quicker.

A couple of months back, just before my BlackHat talk, I was planning to launch yet another of my experiments. [...]

more | comments | comments rss | posted by

Fex – enables Firefox Extension Scanner

Couple of days ago RSnake presented really nice POC on how to detect Firefox extensions using JavaScript and Image tags. This definitely goes into AttackAPI as soon as I finish working on my other projects. Meanwhile here is a simple (well maybe not that simple) bash script that goes through the newest, updated and popular Firefox extension feeds, and construct appropriate signatures in comma separated format.

The script can be downloaded from here. [...]

more | comments | comments rss | posted by