Daily cyber threats and internet security news: network security, online safety and latest security alerts
August 29th, 2009

Malicious Firefox Add-on Spies On Google Search Results

Trend Micro reports the discovery of a spyware (detected as TSPY_EBOD.A by Trend Micro) purporting to be an Adobe Flash Player update. Upon execution, the spyware creates a Firefox add-on called “Adobe Flash Player 0.2,” the installer of which uses JavaScript (detected as JS_EBOD.A) and appears to spread via forum posts.

The add-on injects ads into the user’s Google search results pages. More disturbing, however, is its capability to monitor the user’s browsing activities, particularly his/her Google search queries using the Firefox browser. It then sends the information it gathers to http://******

Malware targeting Internet Explorer is probably one of the reasons why a huge number of users are opting to use alternative browsers such as Firefox, Chrome, Safari, and Opera instead. Though this used to be considered a safe computing practice before, it seems it no longer is with the proliferation of malware targeting the most popular alternative Internet browser, Firefox.

Users should be wary, as always, of downloading updates from unknown sources. They should also note that no browser is safe from malicious attacks as cybercriminals will do just about anything to infect users with their malicious code.

Credit: TrendLabs Malware Blog by Trend Micro

Share this item with others:

More on CyberInsecure:
  • Site Evaluation Results
  • Microsoft Secretly Sneaks Firefox Add-on Into Latest Update
  • Google AdSense Abused Through Click Fraud Malware Applications
  • Office.Microsoft.Com Search Results Can Lead To Rogue Anti-Virus
  • Malware-laced Firefox Add-ons Available On Official Website Overlooked By Mozilla

  • If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Malicious Firefox Add-on Spies On Google Search Results

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.