Security vendors and researchers Antivirus, Webroot has identified that there is a trojan that will steal information via the file has been modified in Firefox. This Trojan will force the browser to store passwords automatically. The threat was detected by Webroot as Trojan-PWS-Nslogm and capable of stealing usernames and passwords stored in Internet Explorer and Firefox browsers. In general, Firefox detects each time a user login will be submitted to the web to be saved or not. When this occurs, the user is presented with a choice like "Remember", "Never for This Site" or "Not Now". If the user selects Remember , the browser stores the username and password in the local database.
Because it is very easy to steal orders from this database through the browser and gain passwords and usernames of users. Trojan makers then make an alternative to remove the warning from Firefox by malicious programs are made. To achieve this, create a patch file in nsLoginManagerPrompter.js on Firefox installation. "Trojan then dig up the information from the registry and store passwords from Firefox, then he tried to pass the information to be stolen in counts per minute," said Andrew Brandt, a malware researcher at Webroot through their resemi pages.
The thieves password will install in c: windows system32 folder as a file Kernel.exe. The data captured will be sent to the main server via an ActiveX control msinet.ocx called deprecated. The emergence of this Trojan keylogger will be made by generators that are available for free on the Internet. Researchers know this after the Trojan makers leave their name and email address. To anticipate this is expected to re-install firefox users belong to them. (Jimmyfernanda / BeritaNet.com)
