[ale] Mozilla confirms infected Firefox add-ons slipped throughsecurity

Avery Ceo avery.ceo at gmail.com
Mon Feb 8 13:06:45 EST 2010


No.  In addition to.  The article says on page 1 that the scan missed it
when it was first uploaded.  Presumably the malware signature was added to
the scanner's database later.

This is actually a case where a security improvement WORKED - a re-scan of
old uploads against new malware signatures caught the trojan, and action was
taken to prevent further damage (the add-on was pulled to prevent further
downloads).  The only thing left would be to notify people who received the
tainted plugin (maybe with a message when Firefox or Seamonkey checks for
updates to it?)

Avery


On Feb 8, 2010 12:38 PM, "Lightner, Jeff" <jlightner at water.com> wrote:

What's really disturbing is at the end of the article where they say
another malware previously got through and responded:

'After the worm snafu, Snyder said Mozilla would boost the number of
times it scanned files for malware, and would also up the frequency of
scans of its entire add-on catalog "to address this sort of case in the
future."'

Are they really doing frequency based scanning rather than scanning when
the files are uploaded?!

-----Original Message----- From: ale-bounces at ale.org [mailto:
ale-bounces at ale.org] On Behalf Of krwa...
Proud partner. Susan G. Komen for the Cure.

Please consider our environment before printing this e-mail or attachments.
----------------------------------
CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential
information and is for the sole use of the intended recipient(s). If you are
not the intended recipient, any disclosure, copying, distribution, or use of
the contents of this information is prohibited and may be unlawful. If you
have received this electronic transmission in error, please reply
immediately to the sender that you have received the message in error, and
delete it. Thank you.
----------------------------------

_______________________________________________ Ale mailing list Ale at ale.org
http://mail.ale.org/ma...
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20100208/3812b5f4/attachment.html 


More information about the Ale mailing list