Skip to main content

2 Firefox Add-Ons Contain Trojans

This Mozilla blog reports that two "experimental" add-ons for Firefox contains Trojan code designed to hijack Windows-based PCs.

Mozilla said Thursday that the Win32.LdPinch.gen Trojan was found in v4.0 of the Sothink Web Video Downloader add-on, and the Win32.Bifrose.32.Bifrose Trojan was discovered in all versions of Master Filer. Mozilla said that both Trojans will infect the host computer once the user installs the add-ons and re-launches the browser.

"Uninstalling these add-ons does not remove the trojan from a user’s system," Mozilla said. "Users with either of these add-ons should uninstall them immediately. Since uninstalling these extensions does not remove the trojan from a user’s system, an antivirus program should be used to scan and remove any infections."

Mozilla said that Master Filer was downloaded from the Mozilla Add-Ons website (AMO) around 600 times between September 2009 and January 2010. Version 4.0 of Sothink Web Video Downloader was downloaded around 4,000 times between February 2008 and May 2008.

Both Firefox add-ons have now been removed from the website.

The developer admitted that its malware scanner failed when checking the Master Filer add-on during the upload process. That problem has now been fixed.

"Two additional malware detection tools have been added to the validation chain and all add-ons were rescanned, which revealed the additional Trojan in Version 4.0 of Sothink Web Video Downloader," the company said. "No other instances of malware have been discovered."

Internet Explorer was said to have giggled uncontrollably upon receipt of the news.

  • Tedders
    And then Internet Explorer said SHIT they fixed it.
    Reply
  • chronicbint
    Bloatware Firefox has been going downhill for ages.
    Reply
  • marsax73
    chronicbintBloatware Firefox has been going downhill for ages.
    I have to agree there. I haven't used Firefox since 2.0 days but I loved it. I just did a fresh install of XP about a week ago. My laptop was running fine and then I installed the latest FF to test it out. Since then, my laptop has been buggy. Locking up randomly, etc. Anyone else have this problem?
    Reply
  • 4ILY45
    Does it affects FF 3.6?
    I run all my all internet browser in a safe run (sandbox or forcefield) environment. Much safer.
    Reply
  • leo2kp
    "Mozilla's malware scan failed to detect Trojans found in to Firefox add-ons."

    Shouldn't it be "...found in two (2) Firefox add-ons."? Just a thought.
    Reply
  • darkknight22
    at least they fixed it quickly instead of doing it the M$ way and passing it on to the next engineering crew and hoping it'll be fixed in a service pack years later.
    Reply
  • zerghumper
    @Chronicbint,

    I agree that it isn't as good as it used to be, but to be honest I still think it's far superior to IE. Just out of curiosity, what browser do you use?
    Reply
  • phexac
    Well it was only a matter of time until hackers realized that FF has big enough market share to warrant attention. I have recently switched to Opera and have thoroughly enjoyed the experience.
    Reply
  • Tomtompiper
    Lets get this into perspective, these are two very marginal addons affecting 4,600 people. The IE6 problem affects many millions, I think this is almost a non story, any sensible Windows user will have their Anti-Virus up to date.

    Reply
  • mrcmark
    Mozilla said that Master Filer was downloaded from the Mozilla Add-Ons website (AMO) around 600 times between September 2009 and January 2010. Version 4.0 of Sothink Web Video Downloader was downloaded around 4,000 times between February 2008 and May 2008.

    crap. I bet this made a lot of damage.
    Reply