Language Selection

English French German Italian Portuguese Spanish

Worm poses as pirated 'Grand Theft Auto'

Filed under
Security

A worm that targets gamers is making the rounds, tapping into popular titles and peer-to-peer file sharing, a security company has warned.

The worm, Hagbard.A, tries to disguise itself on peer-to-peer networks as pirated downloads of the popular games titles "Grand Theft Auto: San Andreas," "Need for Speed Underground 2" and 400 other programs, Sophos said in an advisory released on Friday.

The downloaded program will copy itself to the file-sharing folder on the compromised PC and attempt to spread using Windows Messenger. An instant message sent to others on the service contains a link to the worm and reads: "please download this...its only small brb."

"Because this worm can arrive in the form of an instant message, some users may be fooled into thinking it has come from a friend or colleague, rather than a virus on their PC," Graham Cluley, senior technology consultant for Sophos, said in a statement.

In addition, Hagbard puts a new twist on instant-messaging worms, security experts said, because it installs a Web server program on the infected computer. That could enable malicious attackers to gain remote access to data.

"This one has an interesting behaviour," said Art Gilliland, director of product management at IMLogic, an instant-messaging security provider. "It downloads a Web server to give someone remote access, which is more malicious than the spyware or adware that gets downloaded onto systems from other IM worms."

More of these malicious IM worms may be in the works, as virus writers go from testing the technology to putting it into full-scale use, Gilliland added.

Although Hagbard carries a different bite than other worms, it has not spread as rapidly as other viruses, security experts said.

"We haven't seen a larger number of reports. But that may not be surprising, because most of our customers are enterprises," Cluley said, noting that Hagbard's prevalence is currently rated low. "If it does break out, it will likely be a problem with home users, because most companies prohibit file sharing."

By Dawn Kawamoto
ZDNet

More in Tux Machines

Cinnamon 2.4 to Feature New Theme Selection and Options for Linux Mint 17.1

Cinnamon is the default desktop environment in Linux Mint and it's built by the same developers who are making the Linux distro. It stands to reason that the best implementation for Cinnamon will be on Linux Mint. It's also the place that integrates the latest updates for Cinnamon as soon as they are made available. Usually, the latest iterations of Cinnamon are integrated quickly in Mint, but the developers are also working on an updated Linux Mint version, 17.1. The new Cinnamon 2.4 DE might arrive there by default and not in Linux Mint 17. Read more

Knoppix 7.4.1 Is Now Available For Download

Knoppix developers have released a major version of their operating system Knoppix 7.4.1 based on the usual picks from Debian stable (wheezy) and newer Desktop packages from Debian/testing and Debian/unstable (jessie). According to the official release note, this distro version uses kernel 3.16.2 and xorg 7.7 (core 1.16.0) for supporting current computer hardware. Read more

First Tizen phone now expected in India

Samsung’s postponed Tizen Linux-based smartphone is now heading for a launch in India by the end of the year, reports India’s Economic Times. Everybody, it seems, wants a piece of the Indian smartphone market. The latest company with plans to jump headlong into South Asia is Samsung, which aims to ship a Tizen Linux-based smartphone in India after the Diwali festival in November, according to the Economic Times (ET). Read more

GNOME: 3.14 almost there

Speaking of gedit, after the major changes of 3.12, 3.14 has been a cycle focused on stabilization and polishing. Overall the revised user interface got mostly positve feedback.. I for one, as a heavy gedit user, adapted to the new UI without problems. 3.14 will have a few incremental changes, that among other things try to address some of the issues pointed out by Jim Hall’s usability study presented at GUADEC: “Open” will be a single button removing the dichotomy between the open dialog and recent files and providing quick search among recent files. “Save” now uses a text label since it turns out a lot of people did not grok the icon (and no, I am not going back to the floppy image!) and the view menu has been reorganized and now uses a popover. With regard to the “Open” button, we know things are not perfect yet, search among recent is great, but when the “cache misses”, going through a double step is painful… we already have a few ideas on how to improve that next cycle, but for now I can vividly recommend to try the “quickopen” plugin, one of the hidden gems of gedit, which already provides some of the things we would like to integrate in the next iteration. Read more