Mozilla has temporarily suspended the
Firefox Send file-sharing service as the organization investigates reports of abuse from malware operators and while it adds a "Report abuse" button.
The browser maker took down the service today after
ZDNet reached out to inquire about Firefox Send's increasing prevalence in current malware operations.
Firefox Send: From ransomware to surveillanceware
However, while Mozilla launched Firefox Send with the privacy and security of its users in mind, since late 2019, Firefox Send has seen broader adoption in the malware community.
In most cases, the use is usually the same. Malware authors upload malware payloads on Firefox Send, the file is stored in an encrypted format, and then hackers share the links inside emails they send to their targets.
Over the past few months, Firefox Send has been used to store payloads for all sorts of cybercrime operations, from
ransomware to
financial crime, and from
banking trojans to
spyware used to target human rights defenders.
FIN7, REVil (Sodinokibi), Ursnif (Dreambot), and Zloader are just some of the few malware gangs and strains that have been seen hosting payloads on Firefox Send.