But Copyfish's illegitimate owners could update the extension in the future to resume its malicious activity. On 31 July, someone helped a9t9 stop the extension from pushing out spam. We can not even disable it - as it is no longer in our developer account." We currently have no access to it! So far, the update looks like standard adware hack, but, as we still have no control over Copyfish, the thieves might update the extension another time… until we get it back. "We log into our developer account and boom - our Copyfish extension is gone! It seems the hackers/thieves/idiots moved it to THEIR developer account. The modified add-on began pushing out spams and ads the next day.Ĭopyfish's makers noticed the issue fairly quickly. They didn't spot the bit.ly link hidden in the message and assumed it was legitimate.Īfter they clicked on the attack link and entered in the password for a9t9 software's developer account, those behind this attack updated the extension on 29 July to "V2.8.5". Unfortunately, the team member was using HTML-based email at the time of the the attack. The bit.ly link is clearly visible in the text-based version of the phishing email seen above.
0 kommentar(er)
