Bonum Certa Men Certa

Eye on Security: All Web Browsers Are Insecure... on Windows

Leaning Tower of Pisa
A strong fortress won't last on a puddle of mud



Summary: News from the past few days can suggest that Microsoft Windows -- not the particular Web browser -- in the main source of threat

Malware masquerades as Google Chrome extension

A spam campaign is pushing malware disguised as a Google Chrome extension.

[...]

Rather than delivering the promised extension, the malicious page sends a program that modifies Windows' Hosts file to redirect Google and Yahoo searches to a fake site that downloads other malware.


Malware hides from search engines

Criminals are increasingly attempting to conceal malware embedded in hacked websites from search engines such as Yahoo! and Google. Their aim is to prevent browsers which use technology such as Google's Safe Browsing API from sounding the alarm when a user visits a hacked website. Google's Safe Browsing API allows client applications to query Google's phishing and malware blacklist. Firefox and Google Chrome both make use of the API, which is based on Google searches of websites for suspicious code.


Trojan poses as Google Chrome extension

Bank Trojan Takes Aim at Firefox Users [Mozilla Firefox on top of Windows is not secure]

The company's Flashlight and Rapport services detect the latest version of Zeus, however, and the company recently developed a hardened version of Mozilla for UK bank HSBC specifically to counter the threat of advanced banking Trojans such as Zeus.


PC Owners Being Used as 'Malware Mules'

Hackers are using unsuspecting web [Windows] users as 'malware mules' to infect other PC users with viruses, says Symantec.


Comments

Recent Techrights' Posts

In Switzerland, GNU/Linux Reaches Record Highs, But What About the Corruption?
Pocock is a disappointed citizen of Switzerland
At BetaNews, "Most Commented Story" Is Not a Story But LLM Slop! (Readers Talking to Bots)
They make fake stories with provocative headlines and then boast that these get many comments
[Meme] Swiss Lawyers/Attorneys Who Fake Qualifications and Rob People
Switzerland mostly guards its reputation by censorship of media
Just How Slow Has the News Industry Become?
We're drowning in garbage from fake publishers
BetaNews is Beta-Testing the Site as LLM Slop With Microsoft Propaganda Thrown In
Many of the people there are Microsoft boosters and they use slop as "filler" (for marketing)
Gemini Links 13/11/2024: Phasing Out 3G, Brian Kernighan Books, Tcl/Tk, Time to Ditch x86
Links for the day
 
It Took The Guardian More Than 2 Years of Musk to Realise What Twitter Was and It Took Twitter 4 Years of a President Trump to Realise What Trump Was
Trump was deplatformed only a fortnight before Biden became president anyway
[Meme] Google 80%, Windows 2%
"I'm going to f---ing bury that guy, I have done it before, and I will do it again. I'm going to f---ing kill Google."
Microsoft's Market Share Falls to 2% in Haiti
Throw in Android (now 80% of "the market") and Windows is down to 2%
Gemini Links 13/11/2024: Magic of Walking and Lest We Forget
Links for the day
Links 13/11/2024: USPTO Director Kathi Vidal ('Former' Microsoft Rep) Resigning, Censorship After Car Ramming Attack in China
Links for the day
Microsoft: Layoffs, Outsourcing, and R.T.O. as Cover for Mass Layoffs Without Severance Pay
Microsoft had mass layoffs pretty much every month this year
[Meme] The Addicted Lolicon Throwing Stones
"They've found my RMS attack site"
Jonathan Carter & Debian betrayed Joel Espy Klecker
Reprinted with permission from Daniel Pocock
Links 13/11/2024: Red Tape War and Programming Experiences
Links for the day
Links 13/11/2024: "Make Your Laptop Last FOREVER" With GNU/Linux, 23andMe Mass Layoffs, Intel 'Resignations' Layoffs Loophole
Links for the day
More Than 3 Years After Vista 11's Release More Chinese Computer Users Still Use Vista 7 (Than "11")
it was "officially" released October 5, 2021
Things That Still Work OK (But We're Being Shamed for Using)
Using old stuff is nothing to be shamed of (or afraid to do)
Free Software is About Collaboration
WordPress limits it
Even the Managing Editor of BetaNews is Doing Slop and Spam
A Fish Rots From The Head Down
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, November 12, 2024
IRC logs for Tuesday, November 12, 2024
PERA Bill in US Senate Strives to Crush Caselaw, Making Patents on Mathematics and Algorithms 'Great Again'
Follow the money
Evolution of euthanasia & WIPO UDRP similarities exposed by W. Scott Blackmer
Reprinted with permission from Daniel Pocock
Links 12/11/2024: A Lot of Censorship and SWNS at 50
Links for the day
BetaNews, Inc. Became a Spam Operation/Web Site, LLM Spew (Slop) for SEO Disguised as "Articles"
Published 5 minutes ago by Brian Fagioli...
Gemini Links 12/11/2024: Invidious Down and YouTube Addiction
Links for the day
Links 12/11/2024: Hey Hi (AI) Failures and COP29 Fakers
Links for the day
Latest Rumours of Red Hat Layoffs
Rumours or gossip is how almost everything starts
WordPress is for the 'Old Web'; the New Web Necessitates Static Pages
There are purely practical reasons to move away from WordPress and the likes of it
Biggest Debt Leap in Years, More Than Half a Trillion Dollars in Just One Month
We remind people (almost every year) that it's also "buynothingday"
Windows Falling to All-Time Lows and Microsoft Has Nothing to Replace It With
It's mostly Android (Linux) replacing Windows
Cybershow Has a New 81-Minute Episode on Digital Sovereignty and International Cyber-Relations
it is a high-quality show
Activism in the Digital Realm Can Never (and Must Never) Rely on GAFAM
This simply means that tech activists must completely abandon any hopes of finding allies in Google or IBM or whatever...
Golden Dawn(ald) and What GAFAM Means to Liberal Techies
In one single screenshot
IBM CEO Says Donald Trump as President-Elect is Good for IBM in New Interview With CNBC
most unprincipled CEO ever?
GNU/Linux Up to 6.1% in Finland (Almost 9% If One Counts ChromeOS Too)
Home of Linux (the kernel)
BetaNews Has Become a SPAM/Slop Factory, Brian Fagioli Publishes Fake 'Articles'
everything is now suspect in BetaNews
It's Morbid to Talk About Living People as If They're Dead
What happens to LLM slop when Brian Fagioli dies?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, November 11, 2024
IRC logs for Monday, November 11, 2024
Free Software and Love of Nature
It's not a coincidence that many Free software activists are also lovers of nature
Silicon Valley and GAFAM Were Never Liberal
spineless CEOs and founders aren't against Trump
Windows and 'The Desktop' Floundering
Microsoft should be extremely worried
WordPress is Bad for the Planet (Even If Many Still Use It)
the costs nobody wishes to talk about