14 DAY TRIAL // F-Secure warns users that cybercriminals are trying to distribute a malicious browser extension by claiming it has been developed by the IT security firm.
Once it’s installed into a web browser, the “F-Secure Security Pack” extension starts making Facebook, Twitter and Google+ posts on behalf of the victim.
The malware is signed with digital certificates assigned to a company called "VIDEO TECH PRODUCOES LTDA" and it works with both Chrome and Firefox. It’s uncertain if the certificate has been stolen from the firm or if there’s another connection between the two.
F-Secure is not the only company whose name is leveraged by the malware. Based on the victim’s location, the extension can be called Chrome Service Pack (China), Dr. Web Security Pack (France) and Kingsoft Security Pack (Brazil).
Experts believe the malware has been developed by Portuguese speakers.