Malware News FileZilla's Use Of Bundled Offers Sparks Outrage From Users (Security professionals advise against using FileZilla)

LASER_oneXM

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Content source
https://www.bleepingcomputer.com/news/security/filezillas-use-of-bundled-offers-sparks-outrage-from-users/
Over the weekend a fire storm was unleashed after users started posting on Reddit about how the installer for the popular FileZilla FTP software was being tagged as adware by VirusTotal. These detections are caused by the installer, which is monetized to display offers to users as they install the software.

When downloading installers for FileZilla, the web site contains two different downloads. The main promoted download is the one that pushes offers and is named in a format similar to FileZilla_3.34.0_win64-setup_bundled.exe. FileZilla also offers a download that does not provide offers at this page and will be named similar to FileZilla_3.34.0_win64-setup.exe.

The key word that indicates whether the installer will display offers is the word "bundled". If you download FileZilla from the main site and it includes the word "bundled" then you will be presented with offers.

There is also a stark contrast between the installers in terms of how they are detected by antivirus vendors. For example, the bundled installer has a 8/68 detections on VirusTotal, with most detecting it as an adware installer. The clean version, on the other hand, has 0/68 detections.
Click to expand...
Security professionals advise against using FileZilla

While the current offers being displayed by FileZilla do not appear to be currently malicious in nature, adware bundles are known to cross the line in the past. We have reported on numerous cases of other adware bundles installing miners, rootkits, password-stealing Trojans, or downloading more unwanted programs at a later time.

Due to this, the fact that some of the offers are using unsigned executables from unknown companies, and the developer's replies in a FileZilla support topic, security researchers have stated that users should avoid using FileZilla.
Click to expand...
 
  • Like
Reactions: silversurfer, Deletedmessiah, upnorth and 3 others
You must log in or register to reply here.

Similar threads

silversurfer
    • Like
    • +Reputation
    • Wow
Fruity Trojan Uses Deceptive Software Installers to Spread Remcos RAT
Replies
4
Views
1,294
News Archive
Xeno1234
Xeno1234
H
    • Like
Scams & Phishing News Singapore banks to allow customers to 'lock up' funds in latest move to guard against scam
Replies
0
Views
854
Security News
HarborFront
H
upnorth
    • Like
    • Wow
Newly found Lightning Framework Offers a Plethora of Linux Hacking
Replies
0
Views
753
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top