Bogus Flash Player Update Leads to Shady Firefox Extensions

ThreatTrack Security experts have analyzed the scheme

By on October 17th, 2013 09:53 GMT

Experts have come across a fake Flash Player update website that’s designed to trick users into installing all sorts of dubious Firefox extensions.

Keeping your software up to date is very important if you want to protect your computer against cybercriminals. However, you should only download updates from the vendor or from trusted websites.

ThreatTrack Security researchers have spotted a bogus Flash Player site that instructs users to update the application since their current version might contain vulnerabilities.

However, instead of a Flash Player update, internauts are given a Flash video player app that’s bundled with several other programs.

Users can prevent the third-party apps from being installed, but only if they press the “Decline” button. However, those who aren’t careful will likely click the “Next” button and install all the crapware.

The list of Firefox extensions bundled with the so-called Flash Player update includes Bomblabio, Default Tab, Fast Free Converter, Iminent, Linksicle, LyricalParty, SweetPacks, SySaver, Wajam – some of which are already blocked by Firefox.

Some antivirus solutions detect the installer as a piece of adware or a potentially unwanted program (PUP).

Comments