Mozilla warns browser extension builders of lively phishing campaigns concentrating on accounts within the official AMO (Addons.mozilla.org) repository.
Mozilla’s add-on platform hosts over 60,000 browser extensions and over 500,000 themes utilized by tens of hundreds of thousands of customers worldwide.
In accordance with Mozilla’s advisory, these phishing emails are pretending to be AMO groups and declare that focused developer accounts want updates to keep up entry to improvement options.
“It needs to be famous that the developer neighborhood has detected phishing campaigns concentrating on AMO (addons.mozilla.org) accounts. Add-on builders ought to take excessive warning and scrutiny in the event that they obtain emails from Mozilla/Amo,” Mozilla warned on Friday.
“The phishing e mail normally states that there’s a variation within the message “Mozilla add-on accounts require an replace to proceed entry to developer options.” ”
To guard your account, builders are suggested to all the time examine whether or not the emails they obtain are despatched out of your Mozilla area (Firefox.com, Mozilla.org, Mozilla.com, or subdomain).
Mozilla additionally inspired builders to navigate on to the web site, slightly than following e mail hyperlinks, and to enter solely their login credentials within the official Mozilla or Firefox area.
Mozilla has but to reveal the dimensions of the phishing marketing campaign, however it claims that no less than one developer has been the sufferer of the assault’s last purpose, or whether or not the developer account had already been efficiently compromised.
Mozilla mentioned it’s going to present an replace if extra particulars in regards to the marketing campaign turn into accessible.
The warning comes after final month’s announcement that Mozilla’s add-on operations workforce has launched a brand new safety characteristic that can assist block malicious Firefox extensions designed to empty cryptocurrency wallets.
Andreas Wagner, add-on operations supervisor who oversees Addons.mozilla.org (AMO)’s content material safety and evaluation efforts, mentioned Mozilla has recognized and eliminated a whole lot of expansions over the previous few years, together with fraudulent cryptocurrency wallets.
Not all of those extensions are instantly linked to malicious actions, however cybercriminals final 12 months stole $494 million price of cryptocurrency final 12 months by way of pockets drain assaults affecting greater than 300,000 pockets addresses.
