Saturday, May 4, 2013

Computer Security Alert

For those who use Firefox as a browser, you need to pay attention to this!

There is a spyware company in Britain that works for the government there that has a program that can allow the monitoring and remote use of your computer that is disguised as Firefox.

Mozilla Takes Aim at Spyware That Masquerades as Firefox

Mozilla’s lawyers are sending a nasty gram to a U.K. company that writes spyware for government snoops.

The problem is that FinSpy masquerades as FireFox on the PC, according to researchers at The Citizen Lab, a University of Toronto-backed project that investigates technology and human rights.

snip

Mozilla says it’s sending the U.K. company that makes FinSpy, Gamma International, a cease-and-desist letter later today “demanding that these practices be stopped immediately.” Gamma International couldn’t immediately be reached for comment. FinFisher is the name of Gamma’s command and control server software that collects the surveillance data. It also makes FinSpy, the spyware that runs on the PC.



Gamma International markets its software as a “remote monitoring” program that government agencies can use to take control of computers and snoop on data and communications. In theory, it could be legitimately used for surveillance efforts by crime fighting agencies, but in practice, it has popped up as a spy tool unleashed against dissident movements operating against repressive regimes.

Citizen Lab researchers have seen it used against dissidents from Bahrain and Ethiopia. And in a new report, set to be released today, they’ve found it in 11 new countries: Hungary, Turkey, Romania, Panama, Lithuania, Macedonia, South Africa, Pakistan, Nigeria, Bulgaria, and Austria. That brings the total number of countries that have been spotted with FinFisher to 36.

snip

They found that when they right-clicked on the executable that contained the spyware and opened up the Windows “Properties” dialog box it contained information that was often identical to Firefox.
I originally found this at Boing Boing but their link goes to Wired.com.


From the link about the report in the Wired article, I got this;


Locations of FinFisher Command & Control Servers Found To Date: Australia, Austria, Bahrain, Bangladesh, Brunei, Bulgaria, Canada, Czech Republic, Estonia, Ethiopia, Germany, Hungary, India, Indonesia, Japan, Latvia, Lithuania, Macedonia, Malaysia, Mexico, Mongolia, Netherlands, Nigeria, Pakistan, Panama, Qatar, Romania, Serbia, Singapore, South Africa, Turkey, Turkmenistan, United Arab Emirates, United Kingdom, United States, Vietnam.

My bold.

I used Firefox for years and loved it but I switched to Opera a while back. I still have Mozilla Firefox installed on my computer but it has been on there a long time. I'm certainly hoping that my Anti Virus programs would have caught this FinFisher program if it had tried to download its self in the mean time.


The way to tell the difference is at the top of the window when you right click and go to properties.


(Click to enlarge)

I hope Mozilla sues the living dog shit out of these sonsabitches and puts them completely out of business.

My thanks to both Boing Boing and Wired.com for spreading the word.




No comments:

Fair Use Notice

Fair Use Statement: This site may contain copyrighted material, the use of which may not have been authorized by the copyright owner. I am making such material available in an effort to advance understanding of environmental, political, human rights, economic, democracy, scientific, and social justice issues, etc. I believe this constitutes a ‘fair use’ of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. For more information go to: “http://www.law.cornell.edu/uscode/17/107.shtml” If you wish to use copyrighted material from this site for purposes of your own that go beyond ‘fair use’, you must obtain permission from the copyright owner.