Researchers at Microsoft<\/a> revealed that major internet<\/a> browsers like Google Chrome<\/a>, Firefox<\/a>, Microsoft Edge<\/a> and Yandex<\/a> are hit by a massive malware campaign<\/a>. “The malware<\/a> is designed to inject ads into search engine results pages,” said Microsoft. The researchers said that this malware campaign has been active since at least May 2020. “At its peak in August, the threat was observed on over 30,000 devices every day,” it added. 微软的研究人员透露,主要的互联网浏览器像Google Chrome, Firefox,微软边缘和Yandex遭受大规模的恶意活动。 研究人员微软显示,主要互联网浏览器等谷歌浏览器,火狐,微软的优势和Yandex被撞了大规模的恶意活动。“恶意软件是为了注入广告搜索引擎结果页面,”微软说。研究人员说,这种恶意软件至少竞选以来一直活跃于2020年5月。“8月达到峰值,威胁是观察每天超过30000的设备,”它补充道。
Microsoft revealed that the malware is called Adrozek<\/a>. “If not detected and blocked, Adrozek adds browser extensions, modifies a specific DLL per target browser, and changes browser settings to insert additional, unauthorized ads into web pages, often on top of legitimate ads from search engines,” explained the researchers.
![\"\"](\"\/\/www.iser-br.com\/Themes\/Release\/images\/responsive\/ettelecom-default.jpg\")
Explaining the impact of the attack, Microsoft said, “We tracked 159 unique domains, each hosting an average of 17,300 unique URLs, which in turn host more than 15,300 unique, polymorphic malware samples on average.”
The malware even disabled auto-updates for these browsers. “To prevent the browsers from being updated with the latest versions, which could restore modified settings and components, Adrozek adds a policy to turn off updates,” it said.
Mozilla Firefox<\/a> was the worst affected by Adrozek as it was performing credential theft. It downloaded an additional randomly named .exe file, which collects device information and the currently active username. It sends this information to the attacker. “The malware targeted certain keywords like encryptedUsername and encryptedPassword to locate encrypted data. It then decrypts the data using the function PK11SDR_Decrypt() within the Firefox library and sends it to attackers,” Microsoft added.
<\/p><\/body>","next_sibling":[{"msid":79690178,"title":"Big tech firms to face 6% fines if breach new EU content rules","entity_type":"ARTICLE","link":"\/news\/big-tech-firms-to-face-6-fines-if-breach-new-eu-content-rules\/79690178","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[{"msid":"79683580","title":"Chrome","entity_type":"IMAGES","seopath":"gadgets-news\/google-chrome-microsoft-edge-firefox-hit-by-malware\/chrome","category_name":"Google Chrome, Microsoft Edge, Firefox hit by malware","synopsis":false,"thumb":"https:\/\/etimg.etb2bimg.com\/thumb\/img-size-31299\/79683580.cms?width=150&height=112","link":"\/image\/gadgets-news\/google-chrome-microsoft-edge-firefox-hit-by-malware\/chrome\/79683580"}],"msid":79690487,"entity_type":"ARTICLE","title":"Google Chrome, Microsoft Edge, Firefox hit by malware","synopsis":"Researchers at Microsoft revealed that major internet browsers like Google Chrome, Firefox, Microsoft Edge and Yandex are hit by a massive malware campaign.","titleseo":"telecomnews\/google-chrome-microsoft-edge-firefox-hit-by-malware","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":178,"shares":0,"engagementtimems":890000},"Alttitle":{"minfo":""},"artag":"TIMESOFINDIA.COM","artdate":"2020-12-12 09:38:14","lastupd":"2020-12-12 09:39:15","breadcrumbTags":["Firefox","Google Chrome","Malware","microsoft edge","Mozilla Firefox","Yandex","massive malware campaign","adrozek","Microsoft","Internet"],"secinfo":{"seolocation":"telecomnews\/google-chrome-microsoft-edge-firefox-hit-by-malware"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2020-12-12" data-index="article_1">
谷歌浏览器,微软边缘,Firefox遭受恶意软件
微软透露,恶意软件Adrozek。补充道:“如果不是检测并阻止。Adrozek浏览器扩展,修改每目标浏览器特定的DLL,并修改浏览器设置插入额外的、未经授权的广告变成网页,经常上合法从搜索引擎广告,”研究人员解释。
解释攻击的影响,微软表示,“我们追踪159个独特的域名,每个托管平均17300个不同的url,从而主机15300多独特,平均多态的恶意软件样本。”
恶意软件甚至禁用这些浏览器的更新。“防止浏览器正在更新最新的版本,可以恢复和组件修改设置,Adrozek添加一个政策关掉更新,”它说。
Mozilla Firefox被Adrozek受影响最严重的是执行凭证盗窃。它下载额外的随机命名. exe文件,收集设备信息和当前活跃的用户名。它将这些信息发送给攻击者。“恶意软件针对某些关键词encryptedUsername和encryptedPassword找到加密数据。然后它使用函数PK11SDR_Decrypt解密数据()在Firefox库并将其发送给攻击者,”微软补充道。
读到
Researchers at Microsoft<\/a> revealed that major internet<\/a> browsers like Google Chrome<\/a>, Firefox<\/a>, Microsoft Edge<\/a> and Yandex<\/a> are hit by a massive malware campaign<\/a>. “The malware<\/a> is designed to inject ads into search engine results pages,” said Microsoft. The researchers said that this malware campaign has been active since at least May 2020. “At its peak in August, the threat was observed on over 30,000 devices every day,” it added.
Microsoft revealed that the malware is called Adrozek<\/a>. “If not detected and blocked, Adrozek adds browser extensions, modifies a specific DLL per target browser, and changes browser settings to insert additional, unauthorized ads into web pages, often on top of legitimate ads from search engines,” explained the researchers.
Explaining the impact of the attack, Microsoft said, “We tracked 159 unique domains, each hosting an average of 17,300 unique URLs, which in turn host more than 15,300 unique, polymorphic malware samples on average.”
The malware even disabled auto-updates for these browsers. “To prevent the browsers from being updated with the latest versions, which could restore modified settings and components, Adrozek adds a policy to turn off updates,” it said.
Mozilla Firefox<\/a> was the worst affected by Adrozek as it was performing credential theft. It downloaded an additional randomly named .exe file, which collects device information and the currently active username. It sends this information to the attacker. “The malware targeted certain keywords like encryptedUsername and encryptedPassword to locate encrypted data. It then decrypts the data using the function PK11SDR_Decrypt() within the Firefox library and sends it to attackers,” Microsoft added.
<\/p><\/body>","next_sibling":[{"msid":79690178,"title":"Big tech firms to face 6% fines if breach new EU content rules","entity_type":"ARTICLE","link":"\/news\/big-tech-firms-to-face-6-fines-if-breach-new-eu-content-rules\/79690178","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[{"msid":"79683580","title":"Chrome","entity_type":"IMAGES","seopath":"gadgets-news\/google-chrome-microsoft-edge-firefox-hit-by-malware\/chrome","category_name":"Google Chrome, Microsoft Edge, Firefox hit by malware","synopsis":false,"thumb":"https:\/\/etimg.etb2bimg.com\/thumb\/img-size-31299\/79683580.cms?width=150&height=112","link":"\/image\/gadgets-news\/google-chrome-microsoft-edge-firefox-hit-by-malware\/chrome\/79683580"}],"msid":79690487,"entity_type":"ARTICLE","title":"Google Chrome, Microsoft Edge, Firefox hit by malware","synopsis":"Researchers at Microsoft revealed that major internet browsers like Google Chrome, Firefox, Microsoft Edge and Yandex are hit by a massive malware campaign.","titleseo":"telecomnews\/google-chrome-microsoft-edge-firefox-hit-by-malware","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":178,"shares":0,"engagementtimems":890000},"Alttitle":{"minfo":""},"artag":"TIMESOFINDIA.COM","artdate":"2020-12-12 09:38:14","lastupd":"2020-12-12 09:39:15","breadcrumbTags":["Firefox","Google Chrome","Malware","microsoft edge","Mozilla Firefox","Yandex","massive malware campaign","adrozek","Microsoft","Internet"],"secinfo":{"seolocation":"telecomnews\/google-chrome-microsoft-edge-firefox-hit-by-malware"}}" data-news_link="//www.iser-br.com/news/google-chrome-microsoft-edge-firefox-hit-by-malware/79690487">
评论
现在评论 阅读评论(1)所有评论
找到这个评论进攻?
下面选择你的理由并单击submit按钮。这将提醒我们的版主采取行动