Automatically translated.View original post

GhostPoster malware found on up to 17 Firefox add-ons

GhostPoster malware has been found on 17 Firefox add-ons. Over 50 thousand victims have already been found.

Modern-day web browsers often have add-On or extension extensions to the browser's functionality, and this is also a weakness because hackers can use web browser extensions to release malware.

According to a report by the website, The Hacker News has mentioned the detection of a GhostPoster malware distribution campaign, a malware that uses JavaScript to take over Affiliate Link and shoot fraudulent fake ads through a fake add-on for the Firefox web browser. This campaign was detected by a research team from Koi Security, a software security management specialist. The research team revealed that these fake add-ons have been downloaded more than 50,000 times. The list of add-ons that are the following:

Free VPN

Screenshot

Weather ()

Mouse Gesture (crxMouse)

Cache - Fast site loader

Free MP3 Downloader

Google Translate ()

Traductor de Google

Global VPN - Free Forever

Dark Reader Dark Mode

Translator - Google Bing Baidu DeepL

Weather (i-like-weather)

Google Translate ()

libretv-watch-free-videos

Ad Stop - Best Ad Blocker

Google Translate ()

After installing the add-on on the victim's web browser, during the activation of the add-on, the logo file of the add-on was pulled down. During the processing of the logo file, the malware code encountered a Marker code with a "= =" symbol, which led to the removal of the JavaScript code. The malware then contacted the server located at "www.liveupdt [.] com" or "www.dealctr [.] com" to pull down the payload from the server. It was omitted for 48 hours per attempt to pull down the payload each round, and to evade it. Detect Payload downloads only 10% at a time.

For the capabilities of this malware is as follows:

The theft took over Affiliate Link from web e-commerce such as Taobao and JD.com to use itself to steal the victim's commission caused by the sale.

Tracking Code to track the victim's web access

Remove security on parts of the Header, such as Content-Security-Policy and X-Frame-Options, to open the way to attack victims with Clickjacking and Cross-site Script methods.

Shoot invisible (Invisible) content into a section of iFrame, opening the way for hackers to shoot fake ads onto victim websites opened via a malware-addicted web browser.

The feature evades Captcha (CAPTCHA bypass) and evades being detected by bots on the website.

# Trending # Drug sign with lemon8 # lemon 8 diary # IT should know # freedomhack

1/11 Edited to

... Read moreจากประสบการณ์การใช้งานเว็บเบราว์เซอร์ Firefox และการติดตั้งส่วนเสริมต่าง ๆ ผมพบว่าแม้ว่าส่วนเสริมจะช่วยเพิ่มความสะดวกและฟีเจอร์ที่หลากหลาย เช่น VPN ฟรีหรือแปลภาษา แต่ก็อาจซ่อนความเสี่ยงด้านความปลอดภัยไว้โดยไม่รู้ตัว มัลแวร์ GhostPoster ที่ถูกค้นพบในส่วนเสริมกว่า 17 ตัว มีรูปแบบการทำงานค่อนข้างซับซ้อน โดยจะฝังโค้ด JavaScript ที่สามารถดึงข้อมูล Affiliate Link ของผู้ใช้ไปใช้เอง รวมทั้งแอบแทรกโฆษณาปลอมลงบนเว็บไซต์ที่เปิดอยู่โดยไม่แสดงให้ผู้ใช้เห็น ทำให้หลายคนอาจโดนขโมยรายได้และถูกโจมตีแบบไม่รู้ตัว ในประสบการณ์ของผม ผมเคยเจอปัญหาเบราว์เซอร์ทำงานช้ากว่าปกติ บางครั้งพบโฆษณาที่ไม่เกี่ยวข้องกับเว็บไซต์ที่กำลังชมอยู่ ซึ่งพบว่ามีสาเหตุมาจากส่วนเสริมที่ติดตั้งไว้และมีโค้ดแอบแฝงที่ไม่ปลอดภัย สำหรับผู้ใช้งาน Firefox ผมแนะนำให้ตรวจสอบแหล่งที่มาของส่วนเสริมที่ติดตั้งอย่างละเอียด ดาวน์โหลดจากแหล่งที่เชื่อถือได้เท่านั้น และควรอัปเดตส่วนเสริมและเบราว์เซอร์อย่างสม่ำเสมอเพื่อป้องกันช่องโหว่จากมัลแวร์ นอกจากนี้ ควรติดตั้งเครื่องมือรักษาความปลอดภัย เช่น โปรแกรมป้องกันไวรัสหรือปลั๊กอินเสริมที่ช่วยตรวจจับมัลแวร์และโฆษณาปลอม และหมั่นตรวจสอบพฤติกรรมของเบราว์เซอร์ เช่น ความผิดปกติในการโหลดหน้าเว็บหรือการเปลี่ยนแปลงในลิงก์ที่คลิก มัลแวร์ GhostPoster ยังมีฟีเจอร์ในการหลบเลี่ยงการตรวจจับ เช่น CAPTCHA bypass และการดาวน์โหลดมัลแวร์หลักในอัตราเพียง 10% เพื่อปกปิดตัวเอง ดังนั้นความตระหนักรู้และการอัปเดตข้อมูลข่าวสารด้านความปลอดภัยเป็นเรื่องสำคัญมาก สุดท้ายนี้ อยากแนะนำว่าเมื่อรู้ว่ามีส่วนเสริมที่มีความเสี่ยง ควรลบออกทันที พร้อมกับสแกนคอมพิวเตอร์หรืออุปกรณ์ด้วยโปรแกรมป้องกันมัลแวร์เพื่อความปลอดภัยอย่างเต็มที่

Related posts

Replying to @malwaredb my favorite eyeshadows from Moira 💗 I use the shade renegade so often and people literally stop me to ask where it’s from almost every time I wear it! #beauty #makeup #eyeshadow @moiracosmetics
aaliyah ✈️

aaliyah ✈️

0 likes

Prompts for creators
🌱 From Chaos to Calendar: Ready to move those organized tasks into Notion? Here are 3 simple steps to seamlessly integrate your to-dos into your existing system. Keep it low-friction & effective! Copy & paste your sorted tasks! 📅 #NotionTips #TaskManagement #DigitalOrganization #work
Bytes' Atelier

Bytes' Atelier

11 likes

🚨 16 Billion passwords leaked - the largest breach ever 🚨 Here is how it happened and what you can do to be safe. #news #databreach #cybersecuritytips #onlinesafety
Cybersecurity Girl

Cybersecurity Girl

130 likes

A tutorial title card for 'Free Retro Console Games on MacOS' featuring a browser window showing 'OpenEmu.org' and illustrations of a retro handheld console and a joystick.
A screenshot of the OpenEmu website (openemu.org) in a Firefox browser, with an arrow pointing to the 'Download Now' button for 'Step 1: Download OpenEmu Emulator'.
A screenshot showing a Finder window with OpenEmu files, a pop-up to 'Move to Applications folder', and instructions for 'Step 2: Unzip and Open app' and 'Step 3: Move to Applications Folder', including security settings advice.
✨Retro Game Emulator for MacOS✨
Hey gamers! Setting up a game emulator on MacOS can seem daunting, but I've got you covered! I've created a step-by-step guide to help you get started. 🎮✨ Swipe through the photos above to see detailed screenshots with instructions. Whether you're a newbie or a seasoned gamer, thi
Miroak

Miroak

65 likes

It's no secret that Karol G just slayed the #Grammys #Glambot . #AwardsSeason
user6854050772614

user6854050772614

11 likes

A white card titled "Card 1: AI-Powered Morning Routine Designer" on a wooden table, next to a steaming cup of tea, an open notebook, and a succulent. The card details a use case for designing a gentle, effective, and cozy morning routine using AI.
A white card titled "Card 2: Weekly Review & Reflection with AI Insights" on a wooden table, surrounded by a succulent, a notebook, and a "COZY" mug. The card describes a use case for conducting a reflective weekly review with AI to optimize workflow.
A white card titled "Card 3: Distraction-Free Focus Space AI Setup" on a wooden table, with a steaming cup, notebook, and pen. The card outlines a use case for creating a Notion focus mode for deep work, minimizing friction and maximizing flow.
🎨 Cozy Notion AI Prompt Pack: OS Lessons
Transform your Notion workspace with this cozy prompt pack! Learn how to use Notion AI with lessons from my personal operating system for gentle productivity and effortless organization. Perfect for beginners looking to integrate AI into their daily flow. #Notion #NotionAI #Productivity #
Bytes' Atelier

Bytes' Atelier

4 likes

You Don’t Need an AI Agent Yet
Before you build something complex, fix the workflow underneath it. Better structure, cleaner prompts, and thoughtful automation usually move faster than “agentic” magic. If you don’t know where to start, we can help. We help CEOs everyday find a starting point. #AIWorkflows #AutomationTi
Bytes' Atelier

Bytes' Atelier

2 likes

Here’s What Happened when I
I gave it a vibe, showed it my perfume options, and AI picked the winner.🏅 I asked AI to build my scent of the day based on the vibe I wanted. I took pictures of a few perfumes I thought might fit, then asked AI to choose the best match. Honestly, I love using AI like this — not just to o
Bytes' Atelier

Bytes' Atelier

6 likes

How my perfume prompt started
This is my process most day. 🗒️ 💅🏼 A picture of what I have and or want to wear. Then using ai to make sure it will work. ⚡️ 💕 And of course, putting it on!! 🤖Asking Ai to help make the photo better, then posting. #promptschatgpt #aipromptsforcreators #perfumetips #emergingcreator
Bytes' Atelier

Bytes' Atelier

1 like

Reusable AI Prompts for Dashboards, Databases...
Notion Skills Prompt Pack for turning your ideas into reusable Notion AI workflows. Includes 5 prompt cards for dashboards, databases, workflows, projects, and content planning. Save each prompt as a Notion page, mark it as a Skill, and reuse it whenever you need a simple system. #aiprompts #ai
Bytes' Atelier

Bytes' Atelier

10 likes

love these 💋
have you tried kst? #perfumerecommendations #pride🌈 #perfumecollection
✨ Malware Noir ✨

✨ Malware Noir ✨

7 likes

Supply Chain Attack on 30+ WordPress Plugins
Supply Chain Attack on 30+ WordPress Plugins | Wordfence Security News Clip | April 13, 2026 A buyer acquired more than 30 WordPress plugins through the Flippa marketplace after purchasing the Essential Plugin portfolio for a six-figure sum, then planted a backdoor in every plugin as their very
Wordfence

Wordfence

1 like

A black Guest Internet GIS-R10 Internet Hotspot Gateway device is shown with multiple WAN and LAN ports, set against a blurred city night background. It's designed for enterprise-level Wi-Fi hotspots.
🛡️ The GIS-R10 Controller — Enterprise-Level Power
🚀 The perfect hotspot solution for internet speeds of 400 Mbps! Designed for medium to large hospitality businesses like hotels, resorts, campgrounds, RV parks, marinas, and more, the GIS-R10 makes it easy to provide WiFi access as a complimentary service or a paid option. 🏨🌴🚐⚓ ✨ Why business
Guest Internet

Guest Internet

0 likes

The Podcast Invite Scheme! Always remember - it’s not your fault ♥️ this happens to so many people. Most importantly: STAY SUSPICIOUS OF EVERYTHING 🥰💕 #podcastinvite #podcast #creator #storytime #scheme
Chloe

Chloe

70 likes

☕️ messy notes ??
Turn your chaotic brainstorming into clear, actionable steps! This prompt helps you organize thoughts and find a gentle path forward. Copy & paste your brain dump and let AI do the heavy lifting #AIPrompts #NotionAI #OrganizedThoughts #aipromptsforbusiness
Bytes' Atelier

Bytes' Atelier

6 likes

Check out this website that helps you when you’re feeling uninspired! I walk you thru the process of downloading the svg file to taking it to cricut design space! Happy crafting. #designinspo #creativeart #cricutprojects #svgfiles #CricutTips
VlunaWorks

VlunaWorks

49 likes

A little song I made.
Hope it brings you happiness and wealth. #musichealing #manifestation #manifesting #wealthaffirmations
Bytes' Atelier

Bytes' Atelier

1 like

A finished finger painting depicting a white Hello Kitty with a red bow next to a dark, shadowy figure with glowing yellow eyes and a jagged smile, against a vibrant pink background. The dark figure has red heart details.
The completed finger painting of Hello Kitty and a dark figure, placed on newspaper with art supplies visible, showing the artwork in its creative environment.
A progress shot of the finger painting, showing Hello Kitty with blue outlines and red details, and the dark figure with yellow eyes, on a pink background over newspaper.
Just Finished!!
Finger painting is awesome!! I don’t have my brushes with me so i decided to finger paint, it’s even better than i imagined it’d turn out!! I may or may not sell this painting, but I will have lots more to share like this!! ⭐️Overall rating: 10/10 #paintingmyselfhappy #painting 🎨 #hel
✨🖤alexandria🖤✨

✨🖤alexandria🖤✨

50 likes

When Your Posts Stop Moving, Ask AI This
Tiny creator prompt for when your posts stop moving: Instead of assuming everything is failing, ask AI to look for patterns. Sometimes the answer is not “change everything.” Sometimes it is: * make the hook clearer * show the outcome sooner * use a more specific example * go back to the post
Bytes' Atelier

Bytes' Atelier

4 likes

air and 💋💰
today I went full summer! Today’s layer: Wild Wood body oil + Air by Free Yourself + Shaghaf Women by Swiss Arabian This one starts with smoky sandalwood, cedar, and oakmoss from the oil, then Air lifts it with clean musk, aldehydes, lavender, and green notes. Shaghaf Women adds the glow: citru
✨ Malware Noir ✨

✨ Malware Noir ✨

3 likes

A few updates to my journal 🖤🤗
#journalthrough #journal
mal<3

mal<3

16 likes

Tiny AI tip I use when a project starts feeling messy:
Changing topics? Change chats. Context windows fill up like a cup. After a while, your AI may still remember pieces of the old conversation, but the chat can get crowded with too many directions, drafts, and side quests. Before I switch topics, I ask: “Summarize the useful context from thi
Bytes' Atelier

Bytes' Atelier

2 likes

Free Games! ✅
Free Games! ✅ Yes it’s trusted by many people and it’s the best in the industry! And no malware or virus! Follow for more value! 😉 #freegames #pcgamers #steamgames #gamer #tech
Tech With Unes

Tech With Unes

8 likes

y'all these are 🤌
these are #dollartree flowers! I need to run to the store. @ryan g sent me these photos, and I never knew I needed these in life! ⭐️ Rating: ⭐⭐⭐⭐⭐ #flowersinmyeyes #randomflower #Flower
Bytes' Atelier

Bytes' Atelier

5 likes

🌿 🤍 Bright Green Tea + Violet Vanilla Glow 🌿💜
Today’s layer is giving fresh, cozy, and lightly sweet without feeling heavy: Elizabeth Arden Green Tea Valentino Donna Born in Roma Green Stravaganza Solar Flare / Cheirosa 59-style mist This opens clean and bright with that spa-like green tea freshness, then Green Stravaganza adds a smoot
✨ Malware Noir ✨

✨ Malware Noir ✨

10 likes

Oscar Esparza Hacker

Oscar Esparza Hacker

0 likes

😋
If you want to smell like a sexy milk maiden, this is for you. 💕 idk what happened to my audio
✨ Malware Noir ✨

✨ Malware Noir ✨

1 like

Notion Template Prompt!
#adhdhacks for #notion I use this so often! I love how it really reduces anxiety when I need to do serious work. #aiprompts #ai #notionagents #aiskills #notiontips
Bytes' Atelier

Bytes' Atelier

4 likes

Elite Hacker Destroyed His Empire By Forgetting On
Bro, I really forgot to use a VPN 💀 #hacker #cybercrime #fail #tech #arrestedstupidly
arrestedstupidly

arrestedstupidly

1 like

Ten easy ways to spot a scam
That's a great request! Let's simplify those scam-spotting tools down to the absolute basics, using language even a child can remember. Here are ten easy rules, like a checklist, for staying safe: The 10 Super-Simple Scam Rules | Rule | What to Look For | The Simple Tool | |---|---|---|
Dragonak1754

Dragonak1754

6 likes

A person's hands type on a laptop keyboard, with text overlaying the image stating '10 Online jobs That's pays $50-$100 per hour' and 'Swipe >>'.
Hands type on a laptop, displaying three online jobs: Media Buyer, Public Relations Manager, and Business Consultant, with their hourly rates and descriptions.
Hands type on a laptop, showing three online jobs: Cybersecurity Developer, AI Professional, and Machine Learning Engineer, with their hourly rates and descriptions.
10 online jobs that pays $50-$100 per hour!!
Want to earn $50-$100 per hour from the comfort of your own home? Check out these 10 online jobs that can help you achieve your financial goals! Ready to get started? Share your favorite online job or skill in the comments below! Let's get paid! Tag a friend who needs to know about these high-
Alesha

Alesha

16 likes

adhd friendly flows
I have ADHD, I'm also autistic and have OCD. voice notes are a great way for me to move forward when I'm stuck. #aiproductivity #aipromptideas #adhdhack #creatorideas
Bytes' Atelier

Bytes' Atelier

11 likes

I Asked AI Which Lotion Layers Best With My Perfume
I asked AI which of my lotions would layer best with my perfume — and which one made the most sense for hot weather. This is the kind of fragrance help I actually want: something that considers the scent combo, the vibe, and whether it will feel too heavy in the heat. Try asking AI: “Whic
Bytes' Atelier

Bytes' Atelier

6 likes

Hack Back! Companies aren’t just selling products. They’re selling you. But you don’t have to make it easy 🙃 #AI #privacy #data #cybersecurity
Cathy

Cathy

5 likes

best mango perfume!
Love this house! 3scentialharmony
✨ Malware Noir ✨

✨ Malware Noir ✨

0 likes

She was a fairy 🧚
@ryan g has all the cool flowers. I have Georgia mud. 😭 #Flower #summerbod #fairycore What is this flower?
Bytes' Atelier

Bytes' Atelier

2 likes

art
random drawing I did last night #art
Bytes' Atelier

Bytes' Atelier

1 like

Unable to Initialize Hard Drive? Fix it Now
Find out how you can fix this issue and initialize your hard drive with ease using Partition Assistant, ensuring no data is lost during the process. #hdd #fix #repair #disk
SmoothTechie

SmoothTechie

0 likes

If you’re staring at Cricut Design Space with zero ideas this is for you! This free SVG website is perfect when you need inspiration fast. Save & share with your crafty bestie 💖 #designinspo #creativeart #DesignProcess #cricutprojects #CricutTutorial
VlunaWorks

VlunaWorks

2 likes

📍USB Write Protected? Fix It Instantly
Seeing “The disk is write-protected” error on your USB drive? This quick guide shows how to remove write protection and regain full access to your files. Learn how to check the physical lock switch, use DiskPart commands, repair file system errors, and fix registry issues step by step. Many cases a
XanthusTechCore

XanthusTechCore

5 likes

The image displays a title "Files Copied to USB Drive Disappear - Quick Solutions" above a blue USB drive with glowing data icons. Below, text asks, "USB drive files vanished after transfer? Don't panic—try these solutions to recover and prevent data loss."
This image outlines the first two of "4 Recovery Methods." It details steps for "1: Show Hidden Files via File Explorer" for both Windows and macOS users, and "2: Use Command Prompt (Windows)" with the attrib command to reveal hidden files.
The image presents the last two of "4 Recovery Methods." It describes "3: Run Antivirus Scans" to remove malware and "4: Use Data Recovery Software (MyRecover)" with steps to scan, preview, and recover lost files from a USB drive.
Files Copied to USB Drive Disappear? Lets Recover
Copied files to your USB drive, then they vanished? This issue is often caused by hidden files, unsafe ejection, corruption, or failing flash storage. This guide shows how to reveal hidden files, repair USB errors, and recover missing data safely before it gets overwritten. #usb #datarecovery
XanthusTechCore

XanthusTechCore

5 likes

T.R. Anthko - Indie Author

T.R. Anthko - Indie Author

1 like

Sent his flying
#smokeinthesky #blacksky #nightrunner #wakeupinthesky
Mr.aint.goin

Mr.aint.goin

0 likes

CYBER WEAPONS CAN CRASH NATIONS IN SECONDS
Zona

Zona

4 likes

How to Install Windows on a Second Hard Drive
Learn how to use AOMEI Cloner to clone your existing system to another drive. This makes it easy to back up and restore data in the event of a system crash or malware attack. Download it today and give it a try! #harddrive #clone #hdd #ssd #windows
RedFFTech

RedFFTech

0 likes

You Won’t Expect This
You Won’t Expect This #thenewearth #newearth #earth #multidoimensional #dimension
Smooth DoubleB

Smooth DoubleB

0 likes

Behind the scenes
Started the day just updating the site. Ended the day reworking the whole experience. I extended benefits for our EIP members — because they believed in the vision early, and now they’re truly getting the white-glove treatment. New perks. More access. First looks. I also added something small but
✨ Malware Noir ✨

✨ Malware Noir ✨

0 likes

30+ WordPress Plugins Used In Supply Chain Attack
30+ WordPress Plugins Used In Supply Chain Attack | Wordfence Security News Clip | April 13, 2026 A buyer acquired more than 30 WordPress plugins through the Flippa marketplace after purchasing the Essential Plugin portfolio for a six-figure sum. The buyer's first code commit was a backdoor
Wordfence

Wordfence

1 like

Day 29: 31 Days to a Safer You ‼️ Warning: 183M New and Old Passwords Just Leaked… do this ASAP‼️ Follow for more #news #technews #databreach
Cybersecurity Girl

Cybersecurity Girl

13 likes

Call Center busted!
🚨 BREAKING: An FBI-led investigation busted an international tech support scam tied to India-based fraudsters and U.S. telecom executives. Five India-based scammers were convicted alongside two U.S. executives linked to Ringba, a call-tracking company accused of knowingly helping route fraudulent c
Brewed Up

Brewed Up

2 likes

See more