Bugs :  K-Meleon Forum
You can talk about issues with k-meleon here. But please, for confirmed bugs, use the bug tracker to report and give feedback on bugs.  
Bank Trojan hits Gecko browsers
Posted by: ndebord
Date: October 03, 2009 10:06AM
Options: ReplyQuote
Re: Bank Trojan hits Gecko browsers
Posted by: Yogi
Date: October 04, 2009 01:24AM

Excerpt from the CNet article:
Quote

In this case the malware, a toolkit called LuckySploit, exploits a known security hole in the browser, and installs the Trojan on the computer.

This is a quite misleading statement IMO because:

Quote

LuckySploit tries to exploit the same vulnerabilities other toolkits are trying to - Adobe Flash and PDF exploits
Source: Finjan report PDF

So far it's primarily an Adobe Flash exploit.
AFAIK Adobe fixed the security hole but it will take some time till every Windows user will update.



Edited 1 time(s). Last edit at 10/04/2009 01:25AM by Yogi.

Options: ReplyQuote
Re: Bank Trojan hits Gecko browsers
Posted by: ndebord
Date: October 04, 2009 05:24AM

Quote
Yogi
Excerpt from the CNet article:
Quote

In this case the malware, a toolkit called LuckySploit, exploits a known security hole in the browser, and installs the Trojan on the computer.

This is a quite misleading statement IMO because:

Quote

LuckySploit tries to exploit the same vulnerabilities other toolkits are trying to - Adobe Flash and PDF exploits
Source: Finjan report PDF

So far it's primarily an Adobe Flash exploit.
AFAIK Adobe fixed the security hole but it will take some time till every Windows user will update.

Yogi,

Thanks... I couldn't read most of the posts as they were in German... used KM's Babblefish a couple of times, but didn't get that it was an Adobe and Flash exploit. I'm good there with FlashBlock and just the DLL and Foxit instead of Adobe.

Much thanks for helping me stop sweating!

N

Options: ReplyQuote


K-Meleon forum is powered by Phorum.