FileZilla Has an Evil Twin That Steals FTP Logins


Many people download FTP clients so that they can manage their websites and servers. FTP clients can be an easy way to upload, download and otherwise manage the files that exist on a person’s personal servers. Unfortunately, hackers have a way of transforming innocent FTP clients into harmful programs that damage the user’s credentials. Anyone who is thinking of downloading the FileZilla client should be aware of the following warning: FileZilla has an evil twin that steals FTP logins.

filezilla evil twin

People who download the malicious version of FileZilla are often unaware of its foul intention. The malware versions resemble the regular versions so closely that downloading them by mistake is easy. In fact, the user may not realize what has happened until someone steals his or her login information and begins making changes to the website. To avoid website destruction, theft and other mischievous activities, a user should pay close attention to the following clues:

Fake download URLs: The first clue to look out for is a download URL that looks suspicious. The person might notice pictures instead of the normal user comments and texts. He or she may also notice a slight difference in the version numbers. The official version number of a FileZilla download is v2.45. A malicious version may have a Unicode such as 2.46.3.

Suspicious dll libraries: Fake versions of FileZilla will have dll libraries that do not exist in the original versions. For example, bgcc_s_dw2-1.dll and libstdc++-6.dll are not in the real versions of FileZilla. Additionally, one might notice that the phony versions of FileZilla are smaller than the original versions, which are approximately 6-8 MB in size.

The best way to protect oneself from downloading malicious software is to visit the official websites to download FileZilla. One should avoid unfamiliar territory and websites that look suspicious in any way.

Leave a Reply

© 2017 Ask the Geek. All rights reserved.