Egotastic
 |
Courtney Stodden Is On The Verge Of A Wardrobe Malfunction – Celebuzz |
 I Never Thought I'd Love Sports Bras This Much – The Chive | |
| Kesha Rolls Out With Her Booty Out – The Superficial | |
| Olivia Munn Sizzles In Esquire – Popoholic | |
| Miley Cyrus and Rihanna Making Out? – TMZ | |
| Angelina Jolie's Nude Photo Auctioned Off – Huffington Post |
Fake Flash Update Installs Malicious Browser Extensions That Will Compromise Your PC
Trojans and viruses executed using vulnerabilities found in Flash is nothing new. But cyber criminals keep on using them for the main reason that they're so effective.
Many online users are aware that they need Adobe's Flash player to view certain types of content, like YouTube videos. So if they come across an alert telling them that they need to download the latest Flash update to access certain content, then they'd probably do so without any second thoughts.
Security experts from Zscaler have come across a website that displays a phony window encouraging users to install Adobe Flash Player so that they can view a certain clip. However, what users will actually be downloading is a fake extension for web browsers that depend on the browser that they're using: .XPI for Firefox, .CRX for Google Chrome, or .exe for Internet Explorer.
Once the extensions have been installed, the hacker will be able to gain access to the user's computer.
Anti-virus programs can do little to solve the threat, because .XPI and .CRX file extensions are not recognized as dangerous by most AVP. In this case, you can keep your computer protected by downloading updates and software only from the actual vendor's website and ignoring such alerts that come from third-party sites, especially ones that look a bit shady.