Friend
Professional
- Messages
- 2,653
- Reaction score
- 850
- Points
- 113
Users did not even suspect that their actions were being tracked in real time.
An alarming situation has arisen in the community of users of the multi-protocol messenger Pidgin: a malicious component has been added to the list of third-party plugins. A plugin called "ss-otr" appeared in the list of available for download on July 6 and only on August 16 a message was received from a user with the nickname "0xFFFC0000" that he had found a built-in keylogger in the plugin - a program that records keystrokes. Moreover, it became known that the plugin also sent screenshots to third parties.
After the developers received this information, the plugin was immediately removed from the list of available downloads, and the Pidgin team began its own investigation. On August 22, a security specialist @johnnyxmas confirmed the presence of a keylogger in the plugin. Those who have installed "ss-otr" are advised to remove it immediately to avoid personal information leaks.
It also became known that when added to the list for download, the attacker did not provide the source code of the plugin, and users were offered to download only binary files. This is an obvious flaw on the part of the platform. In the future, Pidgin plans to tighten the requirements for moderation of plugins: all third-party plugins will have to have a license with the approval of the Open Source Initiative and undergo security checks.
Pidgin is a messaging program that allows you to use several different communication protocols simultaneously in a single interface. It supports networks such as XMPP, IRC, Gadu-Gadu, and more. Additionally, the functionality of the program can be expanded with the help of the above-mentioned plugins.
Pidgin is free and ad-free. All source code of the program is open and available for modification under the GNU General Public License, which allows users to adapt it to their needs and share improvements with the community. Pidgin is driven by user input, and regular updates include fixes to issues found and new features suggested by the community.
Source
An alarming situation has arisen in the community of users of the multi-protocol messenger Pidgin: a malicious component has been added to the list of third-party plugins. A plugin called "ss-otr" appeared in the list of available for download on July 6 and only on August 16 a message was received from a user with the nickname "0xFFFC0000" that he had found a built-in keylogger in the plugin - a program that records keystrokes. Moreover, it became known that the plugin also sent screenshots to third parties.
After the developers received this information, the plugin was immediately removed from the list of available downloads, and the Pidgin team began its own investigation. On August 22, a security specialist @johnnyxmas confirmed the presence of a keylogger in the plugin. Those who have installed "ss-otr" are advised to remove it immediately to avoid personal information leaks.
It also became known that when added to the list for download, the attacker did not provide the source code of the plugin, and users were offered to download only binary files. This is an obvious flaw on the part of the platform. In the future, Pidgin plans to tighten the requirements for moderation of plugins: all third-party plugins will have to have a license with the approval of the Open Source Initiative and undergo security checks.
Pidgin is a messaging program that allows you to use several different communication protocols simultaneously in a single interface. It supports networks such as XMPP, IRC, Gadu-Gadu, and more. Additionally, the functionality of the program can be expanded with the help of the above-mentioned plugins.
Pidgin is free and ad-free. All source code of the program is open and available for modification under the GNU General Public License, which allows users to adapt it to their needs and share improvements with the community. Pidgin is driven by user input, and regular updates include fixes to issues found and new features suggested by the community.
Source
