GhostPoster Malware Found in 17 Firefox Add-ons with 50,000+ Downloads
18.12.2025
7497
GhostPoster malware hid inside 17 Firefox add-ons, abusing logo files to hijack links, inject tracking code, and run ad fraud.
🔥 Firefox Add-Ons Got Ghosted — Literally
Yikes. 17 Firefox extensions just got busted for hiding GhostPoster malware — and they had over 50,000 downloads combined. This isn't your average sketchy add-on; this is next-level sneaky.
The malware used steganography (hiding code in plain sight) by embedding malicious scripts inside innocent-looking logo image files. Classic 'wolf in sheep's clothing' move, but for your browser.
Once installed, GhostPoster goes to work: hijacking your clicks, injecting tracking code, and running ad fraud schemes in the background. Think of it as a silent parasite draining your privacy and performance.
Security researchers flagged this as a sophisticated campaign targeting Firefox users specifically. The add-ons posed as useful tools but were actually malware delivery vehicles.
If you've installed any suspicious extensions lately, now's the time for a cleanup. Check your add-ons list and remove anything that looks off — better safe than sorry when malware's this stealthy.
- • 17 Firefox add-ons infected with GhostPoster malware
- • 50,000+ total downloads across all malicious extensions
- • Uses steganography to hide code in logo files
- • Hijacks links and injects tracking code
- • Runs ad fraud operations silently
#GhostPoster#malware#ad fraud#Firefox extensions#steganography
Got a topic? Write to ATLA WIRE on Telegram:t.me/atla_community
