We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Firefox users hit by password-stealing Trojan

Malware disguised as Greasemonkey script

Mozilla Firefox users are being targeted by a new Trojan that steals online banking passwords.

According to security researchers at BitDefender, Trojan.PWS.ChromeInject.A identifies banking and money transfer websites such as Barclays and PayPal though JavaScript, and then collates the logins and passwords before forwarding them to server in Russia.

firefox_logo_100_sqThe malware, which is being spread by drive-by downloads or by duping users into downloading it, is stored in the Firefox add-on folder and is registered as 'Greasemonkey', which are scripts that add extra functionality to Firefox. It starts working as soon as the browser is opened.

However, the malware is not being obtained from Mozilla's official Firefox add-on site and the software manufacturer ensures all new add-ons are scanned for threats before being published.

Viorel Canja, the head of BitDefender's lab, explained that Firefox's increasing market share may be one reason why malware authors are targeting the browser.

Canja urged Firefox users worried about the Trojan to only download signed, verified software.

isit Security Advisor for the latest internet threat news, FREE net threat email newsletters, and internet security products

Visit Broadband Advisor for the latest internet news, reviews, tips & tricks - and to take advantage of PC Advisor's unique, independent Broadband Speed Tester

IDG UK Sites

Three buys O2 to become UK's largest network

IDG UK Sites

CarPlay and Android Auto: only a stepping stone to a fully connected car

IDG UK Sites

Microsoft's HoloLens hands-on review

IDG UK Sites

OS X Yosemite vs Windows 10: The Mac and PC operating systems go head to head UPDATED