DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 28th January 2014
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default FileZilla Has an Evil Twin that Steals FTP Logins

From http://slashdot.org/topic/datacenter...ls-ftp-logins/

Quote:
On the same day the world discovered Western intelligence agencies were siphoning user information from Angry Birds and other popular smartphone apps, a leading antivirus developer revealed hackers are doing the same with one of the most popular open-source applications on the Internet.

Maliciously modified versions of the popular file-transfer protocol (FTP) application FileZilla look and act just like the real thing, but include extra code that steals the login data typed in by users and sends it to an unauthorized server using the same FTP operation launched by the user without going through a firewall that might spot what it’s doing, according to an alert posted this afternoon by antivirus developer Avast Software.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 28th January 2014
JWJones's Avatar
JWJones JWJones is offline
got root?
 
Join Date: Jan 2014
Location: Cascadia
Posts: 68
Default

Yikes! Looks like it's specifically the Windows version, though?
Reply With Quote
  #3   (View Single Post)  
Old 28th January 2014
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default

Many Windows users are using FileZilla to upload stuff to their Linux/Unix/BSD web servers. So if you are administering such a web site it is good to know.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #4   (View Single Post)  
Old 28th January 2014
Beastie Beastie is offline
Daemonology student
 
Join Date: Jan 2009
Location: /dev/earth0
Posts: 335
Default

Okay, the website of a company/programmer team, SourceForge, or any other website is not immune from a security breach. Apparently this is not the case here.

The first Google result for "FileZilla" is the official website. The Linux and Windows versions are hosted on SourceForge and the project's own website respectively.

So how on Earth does this happen?!
Quote:
The best way to avoid the evil twin is to make sure downloads come only from trusted sites, avoid sites using custom downloaders and avoid installers that have adware or other add-on application installed as well, the report recommends.
Noobs?
__________________
May the source be with you!
Reply With Quote
Reply

Tags
filezilla

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Security DNS flaw reanimates slain evil sites as ghost domains J65nko News 0 16th February 2012 10:06 PM
Stallman: Did I say Jobs was evil? I meant really evil. J65nko News 1 30th October 2011 08:18 PM
root logins phyro OpenBSD Security 3 28th October 2010 09:23 PM
install FileZilla in OpenBSD 4.2 mfaridi OpenBSD Packages and Ports 3 4th November 2008 08:13 AM
Enable root logins and solving display issues? disappearedng FreeBSD General 5 7th June 2008 10:24 PM


All times are GMT. The time now is 06:25 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick