Mozilla, the developers and provider of the Firefox browser announced recently that one of their Security Test Add-ons has been found with a backdoor that, "whenever a login form was submitted, the add-on secretly sent a copy of the URL, password and other details to an IP address presumably controlled by the malicious author".
The Add-on is the Mozilla Sniffer Add-on. Mozilla has now pulled this add-on and deleted the creator from it's list of users.
More details here;
http://news.netcraft.com/archives/2010/07/15/firefox-security-test-add-on-was-backdoored.html
Also reported by Donna Buenaventura in CNET's Spyware, viruses and security forum here;
http://forums.cnet.com/5208-6132_102-0.html?messageID=3339471#3339471
Mark
 | Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years. Thanks, CNET Support |
General discussion
Mozilla Firefox Browser Add-on insecure
Discussion is locked
CNET Forums
Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Roadshow Autos
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic