Η team development of the Pale Moon browsing application he said on July 10, 2019 that the archive server they are using was compromised by hackers and used to distribute malware.
The team detected the breach on July 9, 2019 and immediately shut down the archive server to prevent further infections from malicious software. An analysis of the issue revealed that the infection likely occurred on December 27, 2017.
The archive server is used to serve older versions of Pale Moon, and so according to the announcement the major browser distribution channels were not affected by the breach, but only the archived versions.
In addition, the hacker managed to infect only the executable files of the browser and not data that existed in other folders. For example, other programs hosted on the server within other dirs, such as the Basilisk browser, were not affected.
According to the publication, the issue affected all archived executables of Pale Moon before and until version 27.6.2.
The team's investigation began with an incident on May 26, 2019 that caused "widespread data corruption" on the archiving server to the point where it was no longer possible to start or transfer data.
The hacker or hackers managed to pass a malicious script on the server to distribute malware to the visitors of the browser page. The infection increased the size of executable files by about three Megabytes after Win32 / ClipBanker.DY was added into the exe.
If someone was running the installation exe, you inadvertently add a trojan / backdoor to your system that could allow further infections.
According to the announcement, those who have never downloaded Pale Moon from the archive (archive.palemoon.org) are "almost certainly safe."
However, if you are using the application, it would be good to remove it immediately and then scan your computer with a reliable antivirus.
The signature of the infection is "known to all major antivirus companies" according to the announcement, which states. programs such as Avira Antivirus, Avast Free Antivirus, BitDefender Free or Kaspersky Free Antivirus.
Archived versions of Pale Moon are now accessible in its archive archive.palemoon.org, and the dates show that they were created on July 10, 2019.
___________________
- ICS Forth more about the hack of Greek domains gr & el
- Microsoft: accepted on the Linux private list
- Facebook, Instagram, WhatsApp: Images are not displayed
