Password stealing software tricks users by posing as Firefox Plugin making victims unaware of password theft
A new type of malware designed to harvest web passwords has been detected in-the-wild by BitDefender’s antivirus research labs. This latest e-threat – called Trojan.PWS.ChromeInject. – is intended to be delivered onto a compromised computer system by other malware for subsequent download into Mozilla Firefox's Plugin folder. Once installed it gets to work every time Firefox is started.
According to BitDefender researchers, the Trojan homes in on transactions and password data by targeting a check list of designated banking websites. Several well known names are on the list including PayPal, which is used widely in the UK for online shopping and financial transactions.
Stolen login credentials are sent to a web address similar to [removed]eex.ru. Both the domain and the hosting server are located in Russia, which points to the origins of this latest e-threat.
Commenting on this alert, Viorel Canja, head of BitDefender anti-virus lab, said “Users should be aware that without the appropriate security solution, the integrity of their systems is at an extremely high risk.
