| View previous topic :: View next topic |
| Author |
Message |
Copper
Black Belt 5th Degree
Joined: 14 Jul 2003
Posts: 8614
Location: Midlands UK
|
 Posted: Wed Jan 19, 2005 9:19 am Post subject: Hackers use porn worm to take over PCs |
 |
|
| Quote: | Hackers use porn worm to take over PCs
Mass-mailer claims to clean adult content from computers
Iain Thomson, vnunet.com 18 Jan 2005
Antivirus experts today warned that a mass-mailing worm designed to fool computer users into believing that pornographic content has been found on their PC actually allows hackers to gain remote access to compromised computers.
The Baba-C worm (W32/Baba-C) spreads via email, duping innocent users into believing that it is a warning about 'XXX content' found on their Windows PCs. Users are told that this adult material can be hidden by running a program called Evidence Cleaner.
However, in reality, no pornographic content has been found on the PC, and clicking on the attached file runs the worm which will attempt to forward itself to other email addresses, and open a backdoor for hackers to gain access to the system.
Emails sent by the worm arrive with the subject line: 'Important! XXX sites found on your computer!'
They contain the following message: 'Windows Evidence Checker has found XXX content on your computer. You can hide your activities with Evidence Cleaner service. To run Evidence Cleaner click to quick shortcut attached. Warning! Your copy of Evidence Cleaner will be expired after 7 days. Today you can register for FREE. Please check attached instructions for more details.'
The attached file tries to disguise itself as a web link, but is in reality a malicious executable file.
"Many people are worried about the adult material that inhabits areas of the internet, and don't want it to reach their PC. It's also clear that the internet is widely used for accessing hardcore sexual material," said Graham Cluley, senior technology consultant at Sophos.
"Either way, many people want to ensure that their PC contains no evidence of XXX content, and may be tempted to follow this email's instructions if they are sent this worm.
"The Baba-C worm is using a dirty trick. Our advice, as always, is to keep your antivirus software up-to-date and never launch an unsolicited email attachment."
Sophos noted that there have only been a small number of reports of Baba-C infecting PCs in the wild. Further details of the worm can be found here.
|
_________________
"Only two thing are infinite, the universe and human stupidity,and Im not sure about the former." Albert Einstein (1879 - 1955) |
|
| Back to top |
|
 |
_Menschenwurst
Initiate
Joined: 08 Jan 2005
Posts: 39
Location: Buffalo
|
| Posted: Wed Jan 19, 2005 11:00 am Post subject: |
|
|
If it's a popup window, that I've seen before, or a link sent in an email. God help people who are dumb enough to click on it.
 |
|
| Back to top |
|
|
Ghen
Black Belt 5th Degree
Joined: 26 May 2004
Posts: 5806
Location: Delaware
|
| Posted: Wed Jan 19, 2005 11:34 am Post subject: |
|
|
I fix computers all the time that have virii like these. Its not really all that damaging to people without critical files on the computer.
_________________
   |
|
| Back to top |
|
|
snap355
Black Belt 5th Degree
Joined: 13 Sep 2004
Posts: 9257
Location: 33258
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
