Alternative browser spyware infects IE

The following article I thought may be of interest to some on this group:

Alternative browser spyware infects IE
By John Leyden
Published Friday 11th March 2005 16:54 GMT

Some useful citizen has created an installer that will nail IE with spyware, even if a surfer is using Firefox (or another alternative browser) or has blocked access to the malicious site in IE beforehand. The technique allows a raft of spyware to be served up to Windows users in spite of any security measures that might be in place.

Full article: http://www.theregister.co.uk/2005/03/11/alternative_slimeware/

And this is what we all were talking about few months ago:

"Just switching away from IE does not give adequate protection. Now that Firefox and other alternative browsers have a toehold in the market the hacking community will get busy exploiting the vulnerabilities that exist in any complex browser," he said.

When they are done with IE, and if people ever completely switch to Firefox or any other alternative, I’m sure they will find some ways to attack other browsers just as they were attacking IE… they always need some toy to play with.

When they are done with IE, and if people ever completely switch to Firefox or any other alternative, I'm sure they will find some ways to attack other browsers just as they were attacking IE... they always need some toy to play with.

I doubt it will ever be as bad as IE has it, considering that Firefox was built with security in mind, and IE wasn’t.

–lee

After some more research i found most browsers have to have Java installed for this exploit to work, and even then they have to accept (press yes) to the scary looking certificate box. (although this will probably fool most users).

Well i don’t have java enabled anyway (i do have alimited Javascript enabled though) and i don’t press yes to anything.

Anyway i thin Firefox has already done something about this, because i went to the site to check it out and it blocked it (see below).

–lee

Generally, if I see anthing like this:

http://img.photobucket.com/albums/v651/xistenz/lyricspy.png

in Internet Explorer, I can be sure that it is spyware.

NEVER INSTALL SOFTWARE IF YOU SEE THIS!

You could also be advised to add *.lyricspy.com to Internet Explorer’s Restricted Sites zone.

In fact, right now, Firefox is on fire ;D
This week more and more limitations were found…
Anyway, like Sasha said, they want something to play with :frowning:

In fact, right now, Firefox is on fire Grin This week more and more limitations were found... Anyway, like Sasha said, they want something to play with

Are there as many as there are on IE?, notice how quick there being quick there fixed and how easy temp workarounds are and how easy they are to avoid.
I mean the exploit mentioned above didn’t even affect me, even if it did, i would of had to accept it because of the way java works, rather then auto installing way of activeX.

So i still have faith that firefox is and will remain more secure for a while, as you can see I’m being very stubborn about this ;D

–lee

No.

Yes.

Even if you have to accept it won’t change the facts. All programs can be abused, cracked, etc. etc.

No doubt. I really think Firefox is much more secure than IE.
Unfortunately, for me, there aren’t that many features that I like and look for when I choose a browser.

From spyware Weekly Newsletter re above

http://www.spywareinfo.com/newsletter/archives/2005/mar13.php#firefox