Fake "Flash Player Pro" Update Delivers Password-Stealing Trojan

HardOCP News · Mar 9, 2015

As always, we know you guys don't fall for this stuff but we all have friends and family members that do. Spread the word, not the worm.

This campaign is targeting users who's DNS server settings have been changed to redirect them to malicious sites without their knowledge. This can be the result of a previous compromise of their routers via malware such as the DNSChanger Trojan, or a malvertising campaign such as this one. However it happened, these users are now in danger of getting saddled with Fareit.

daglesj · Mar 9, 2015

I have given up giving the lecture.

Instead it's an easy £50 a time to clean it all off...again.

krogen · Mar 9, 2015

Flash Player Pro?

I recommend HTML6 to everyone.

jiminator · Mar 9, 2015

flash is broken half the time because I don't allow it to autoupdate. i'll be glad when it has been replaced

Quix · Mar 9, 2015

How do you tell the difference between this and the normal Flash Player? It's so full of holes that it might as well just steal all your passwords.

SmithyJones · Mar 10, 2015

People still install Flash?

temujin987 · Mar 10, 2015

phreakpiercer said:
People still install Flash?

plenty of websites still rely on it. twitch.tv's html5 implementation is still not done. the flash player eats some ridiculous cpu power and alternatives like using "livestreamer" to feed twitch into vlc are as retarded as they sound. i wish flash was dying much faster than this.

Ashbringer · Mar 10, 2015

You know in Linux this isn't a problem cause it automatically updates with the OS. In Mint and Ubuntu anyway, Along with Java everything updates through the repository. This is one of those issues with Windows update that results in both Java and Flash exploitation. Also Mint/Ubuntu comes with Open JDK for Java so no need for Oracles, and it works just fine with Minecraft as well.

Got AVG reminding me to restart my Windows machine for an "update", but most likely will replace my default webpage startup and add it's own search as well to my web browser.

jiminator · Mar 10, 2015

...and what if someone gets malware into the repository? because it will probably happen one day

redrage · Mar 10, 2015

jiminator said:
...and what if someone gets malware into the repository? because it will probably happen one day

na that can't happen.... wait a second here...

http://www.theregister.co.uk/2011/08/31/linux_kernel_security_breach/

damnit

Ashbringer · Mar 10, 2015

redrage said:
na that can't happen.... wait a second here...

http://www.theregister.co.uk/2011/08/31/linux_kernel_security_breach/

damnit

It's still a better system then depending on 3rd party programs doing it.

xorbe · Mar 10, 2015

Nonono, not Flash Player Pro what you want is Flash Player Ultra! This crapware is all over foreign server movie streaming sites (from what the local victims have shown me.)

Fake "Flash Player Pro" Update Delivers Password-Stealing Trojan

HardOCP News

[H] News

daglesj

Supreme [H]ardness

krogen

[H]ard|Gawd

jiminator

[H]F Junkie

Quix

2[H]4U

SmithyJones

2[H]4U

temujin987

[H]ard|Gawd

Ashbringer

Supreme [H]ardness

jiminator

[H]F Junkie

redrage

Limp Gawd

Ashbringer

Supreme [H]ardness

xorbe

Supreme [H]ardness