Language Selection

English French German Italian Portuguese Spanish

Worm poses as pirated 'Grand Theft Auto'

Filed under
Security

A worm that targets gamers is making the rounds, tapping into popular titles and peer-to-peer file sharing, a security company has warned.

The worm, Hagbard.A, tries to disguise itself on peer-to-peer networks as pirated downloads of the popular games titles "Grand Theft Auto: San Andreas," "Need for Speed Underground 2" and 400 other programs, Sophos said in an advisory released on Friday.

The downloaded program will copy itself to the file-sharing folder on the compromised PC and attempt to spread using Windows Messenger. An instant message sent to others on the service contains a link to the worm and reads: "please download this...its only small brb."

"Because this worm can arrive in the form of an instant message, some users may be fooled into thinking it has come from a friend or colleague, rather than a virus on their PC," Graham Cluley, senior technology consultant for Sophos, said in a statement.

In addition, Hagbard puts a new twist on instant-messaging worms, security experts said, because it installs a Web server program on the infected computer. That could enable malicious attackers to gain remote access to data.

"This one has an interesting behaviour," said Art Gilliland, director of product management at IMLogic, an instant-messaging security provider. "It downloads a Web server to give someone remote access, which is more malicious than the spyware or adware that gets downloaded onto systems from other IM worms."

More of these malicious IM worms may be in the works, as virus writers go from testing the technology to putting it into full-scale use, Gilliland added.

Although Hagbard carries a different bite than other worms, it has not spread as rapidly as other viruses, security experts said.

"We haven't seen a larger number of reports. But that may not be surprising, because most of our customers are enterprises," Cluley said, noting that Hagbard's prevalence is currently rated low. "If it does break out, it will likely be a problem with home users, because most companies prohibit file sharing."

By Dawn Kawamoto
ZDNet

More in Tux Machines

Leftovers: Red Hat

Leftovers: Ubuntu Derivatives

Android Leftovers

Leftovers: OSS

  • Why Does the Government Use Open Source Code?
  • Twitter open-sources Diffy, a tool for automatically spotting bugs in code
    Twitter is today announcing the availability of Diffy, a new piece of open-source software that developers can use to spot bugs when they’re making updates to certain parts of code. Twitter uses the code internally. Now the social networking company is releasing it to the rest of the world.
  • We wrote an open source bank parser
    Our first project is something I was already working on, an extensible parser to chew bank statements and shit out transaction sheets. We made a gem, made an API and learnt a lot in the process. (We even wrote a java API to unlock pdf files given a password. Whew!). We currently have a meager three bank support, but we've managed to build a framework that makes it super easy to add other banks and statement formats.
  • Google Patches Critical Vulnerabilities in Chrome 45
  • Chrome Browser Nearing 30 Percent Market Share [Ed: Calling Microsoft-connected firm “a prominent Web analytics company”]
    It's no secret that Google Chrome and Mozilla Firefox--both open source browsers--were locked in a neck-and-neck market share battle for a long time. The two browsers have remained on rapid release cycles, and for years they tended to leapfrog each other for market share in small increments each month.
  • FossaMail Open-Source Mail Client Launches Update
    FossaMail is built on the Mozilla Thunderbird client but without all the will-they-or-won’t-they of the rumors that Mozilla has done with Thunderbird. Even better, FossaMail is compatible with both Windows and Linux, while offering a 64-bit download in Windows to up the speed, address more memory, and perform other 64-bit operations. At the same time, FossaMail looks and feels just like Thunderbird, despite the oval tab fiasco. It still offers a contacts list, calendar, and chat, just like most users have come to expect from their email platforms. It’s so close to Thunderbird, in fact, that the developers didn’t bother with an extensive tutorial or FAQ, but instead just point users to the Thunderbird help section if they have any problems.
  • Proprietary vs. open source WCM [Ed: pro-proprietary]
    As it turns out, open source software is not always so free, proprietary software is not necessarily closed, and help from the open source community isn’t nearly as comprehensive as the level of support you get from a professional vendor.
  • Releases 1.19.1 of Tioga and 0.13.1 of ctioga2
  • ORNL Building Efficiency Software Available as Open Source Code
  • Autotune Code from ORNL Tunes Your Building Energy Efficiency
  • ORNL Offers Automated Calibration Software for Building Efficiency Studies as Open Source Code
  • Book cover for the Free Culture book finally done
    Creating a good looking book cover proved harder than I expected. I wanted to create a cover looking similar to the original cover of the Free Culture book we are translating to Norwegian, and I wanted it in vector format for high resolution printing. But my inkscape knowledge were not nearly good enough to pull that off.
  • Hacker proves with Open Data that Microsoft license costs don’t matter
    goes against one of the arguments used more frequently to promote Free Software (which, in and by itself, is intrinsically weak, and therefore not used as the main one by the most experts) that is licensing costs. The graph clearly show that such costs (the leftmost column) are only a small part of the total. From left to right the columns show “software license costs”, “immaterial goods” (whatever that means…), “software acquisition and development”, “litigation and other legal expenses” (as much as licenses..), “software assistance and maintenance”
  • M$’s Licensing Costs Are Only The Tip Of The Iceberg Of IT – Look Below
  • There’s still a chance to save WiFi
    You may not know it, but wifi is under assault in the USA due to proposed FCC regulations about modifications to devices with modular radios. In short, it would make it illegal for vendors to sell devices with firmware that users can replace. This is of concern to everyone, because Wifi routers are notoriously buggy and insecure. It is also of special concern to amateur radio hobbyists, due to the use of these devices in the Amateur Radio Service (FCC Part 97).