'Fireball' Malware Can Steal User Data, Warns CERT-In

Advertisement
By Press Trust of India | Updated: 8 June 2017 10:31 IST
Highlights
  • Fireball steals sensitive user data and manipulates regular surfing data
  • CERT-In has issued its latest advisory to Internet users
  • It said the virus can be detected by majority of anti-virus solution
'Fireball' Malware Can Steal User Data, Warns CERT-In

Cyber-security sleuths have alerted Internet users against the destructive activity of a browser-attacking virus- 'Fireball'- that steals sensitive user data and manipulates regular surfing activity.

The malware has been spreading across the globe and possesses over two dozen aliases and spreads by bundling and "without the user's consent".

"It has been reported that a malware named as 'Fireball' targeting browsers is spreading worldwide.

"It has the ability to collect user information, manipulate web-traffic to generate ad-revenue, malware dropping and executing malicious code on the infected machines," the Computer Emergency Response Team of India (CERT-In) said in its latest advisory to Internet users.

Advertisement

India Among Countries Worst-Affected by New 'Fireball' Malware: Check Point

The CERT-In is the nodal agency to combat hacking, phishing and to fortify security-related defences of the Indian Internet domain.

Advertisement

The agency said the malware or the virus can be "detected by majority of the anti-virus solutions" and it has advised Internet users to install updated anti-virus solutions to protect their computers from this infection.

It said the virus, 'Fireball', "currently installs plug-ins and additional configurations to boost its advertisements but it could be used as distributor for any additional malware in future."

Advertisement

"It is reported that the malware 'Fireball' is used by one of the largest marketing agency to manipulate the victims' browsers and changes their default search engines and home pages into fake search engines.

"It also re-directs the queries to either yahoo.com or Google.com. The fake search engines also collects the users' private information," the advisory said.

'Fireball', it said, is capable of acting as a browser-hijacker, manipulating web traffic to generate ad-revenue, capable of downloading further malware, capable of executing any malicious code on the victim machine and collects user information and steals credentials from the victim machine.

The CERT-In has also suggested some counter-measures: "Do not click on banners or pop-up or ads notifications, do not visit untrusted websites and do not download or open attachment in emails received from untrusted sources or unexpectedly received from trusted users."

It said a user, in order to exercise caution after logging-in the system, should check for default setting of web browsers, such as homepage, search engine, browser extensions and plug-ins installed, and if something is found unknown, then it should be deleted.

 
Post your comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: CERT-In, Internet, Apps, India, Fireball, Cyber Attack
Flipkart Announces Hackathon to Deal With Bengaluru's Traffic Woes
Advertisement

Related Stories

Google Chrome Security Flaws Could Grant Hackers Unauthorised System Access: CERT-In
19 May 2025
CERT-In Warns of Multiple Security Vulnerabilities Affecting Older iPhone, iPad Models: All You Need to Know
1 November 2023
CERT-In Warns of Over 50 Security Flaws Affecting Android Smartphones: All You Need to Know
13 October 2023
CERT-in Issues High Severity Vulnerability Warning for Google Chrome; Advises Users to Apply Updates
12 October 2023
Electric Vehicle Charging Stations Vulnerable to Cyber Attacks, Hints Union Minister Nitin Gadkari
16 March 2023
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Apple Announces iOS 26 With Liquid Glass Design, These New Features
  2. Poco F7 India Launch Teased; Flipkart Availability Confirmed
  3. iQOO 13 and More Available With Discounts During iQOO 5th Anniversary Sale
  4. Vivo T4 Ultra Chipset, Display Features Confirmed Ahead of India Launch
  5. AI+ Smartwatch With Built-in TWS Launching This Month: Report
  6. WWDC 2025 Highlights: Apple Unveils iOS 26, macOS 26 and Liquid Glass UI
  7. WazirX Parent Zettai Seeks Moratorium Extension, Responds to Court Criticism
#Latest Stories
  1. WWDC 2025: Apple Unveils iPadOS 26 With New Windowing System, Liquid Glass UI, and More
  2. WWDC 2025: macOS Tahoe 26 Unveiled With New Design, Continuity Features and Big Update to Spotlight
  3. WWDC 2025: Apple Announces iOS 26 With New Liquid Glass Design, Apple Intelligence Enhancements and More
  4. WWDC 2025: Apple Intelligence Models Expanded to Developers, Live Translation Feature Unveiled
  5. Xbox Chief Phil Spencer Hints at 'Return' of Halo: Combat Evolved Next Year
  6. Vivo X Fold 5 Design Teased; Confirmed to Feature 8T LTPO Panels, Meet IP5X and IPX9+ Certifications
  7. Oppo K13x 5G Price Range in India Tipped; Alleged Retail Box Suggests Flat Display
  8. WWDC 2025: Apple Faces AI, Regulatory Challenges As it Woos Developers at Annual Conference
  9. WazirX Parent Zettai Urges Singapore Court to Review WazirX Restructuring, Extend Moratorium
  10. AI+ Smartwatch With Built-in TWS Tipped to Launch in June; Retail Box Image Leaked
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.