Language Selection

English French German Italian Portuguese Spanish

Worm poses as pirated 'Grand Theft Auto'

Filed under
Security

A worm that targets gamers is making the rounds, tapping into popular titles and peer-to-peer file sharing, a security company has warned.

The worm, Hagbard.A, tries to disguise itself on peer-to-peer networks as pirated downloads of the popular games titles "Grand Theft Auto: San Andreas," "Need for Speed Underground 2" and 400 other programs, Sophos said in an advisory released on Friday.

The downloaded program will copy itself to the file-sharing folder on the compromised PC and attempt to spread using Windows Messenger. An instant message sent to others on the service contains a link to the worm and reads: "please download this...its only small brb."

"Because this worm can arrive in the form of an instant message, some users may be fooled into thinking it has come from a friend or colleague, rather than a virus on their PC," Graham Cluley, senior technology consultant for Sophos, said in a statement.

In addition, Hagbard puts a new twist on instant-messaging worms, security experts said, because it installs a Web server program on the infected computer. That could enable malicious attackers to gain remote access to data.

"This one has an interesting behaviour," said Art Gilliland, director of product management at IMLogic, an instant-messaging security provider. "It downloads a Web server to give someone remote access, which is more malicious than the spyware or adware that gets downloaded onto systems from other IM worms."

More of these malicious IM worms may be in the works, as virus writers go from testing the technology to putting it into full-scale use, Gilliland added.

Although Hagbard carries a different bite than other worms, it has not spread as rapidly as other viruses, security experts said.

"We haven't seen a larger number of reports. But that may not be surprising, because most of our customers are enterprises," Cluley said, noting that Hagbard's prevalence is currently rated low. "If it does break out, it will likely be a problem with home users, because most companies prohibit file sharing."

By Dawn Kawamoto
ZDNet

More in Tux Machines

Manjaro Linux Phasing out i686 (32bit) Support

In a not very surprising move by the Manjaro Linux developers, a blog post was made by Philip, the Lead Developer of the popular distribution based off Arch Linux, On Sept. 23 that reveals that 32-bit support will be phased out. In his announcement, Philip says, “Due to the decreasing popularity of i686 among the developers and the community, we have decided to phase out the support of this architecture. The decision means that v17.0.3 ISO will be the last that allows to install 32 bit Manjaro Linux. September and October will be our deprecation period, during which i686 will be still receiving upgraded packages. Starting from November 2017, packaging will no longer require that from maintainers, effectively making i686 unsupported.” Read more

Korora 26 'Bloat' Fedora-based Linux distro available for download -- now 64-bit only

Fedora is my favorite Linux distribution, but I don't always use it. Sometimes I opt for an operating system that is based on it depending on my needs at the moment. Called "Korora," it adds tweaks, repositories, codecs, and packages that aren't found in the normal Fedora operating system. As a result, Korora deviates from Red Hat's strict FOSS focus -- one of the most endearing things about Fedora. While you can add all of these things to Fedora manually, Korora can save you time by doing the work for you. Read more

BackSlash Linux Olaf

While using BackSlash, I had two serious concerns. The first was with desktop performance. The Plasma-based desktop was not as responsive as I'm used to, in either test environment. Often times disabling effects or file indexing will improve the situation, but the desktop still lagged a bit for me. My other issue was the program crashes I experienced. The Discover software manager crashed on me several times, WPS crashed on start-up the first time on both machines, I lost the settings panel once along with my changes in progress. These problems make me think BackSlash's design may be appealing to newcomers, but I have concerns with the environment's stability. Down the road, once the developers have a chance to iron out some issues and polish the interface, I think BackSlash might do well targeting former macOS users, much the same way Zorin OS tries to appeal to former Windows users. But first, I think the distribution needs to stabilize a bit and squash lingering stability bugs. Read more

BSD: Testing OpenSSH 7.6, 23 Years of FreeDOS

  • Call for testing: OpenSSH 7.6

    OpenSSH 7.6p1 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This is a bugfix release.

  • 23 Years of FreeDOS

    This eBook contains the voices of many of the users who contributed their stories, as well as the history of FreeDOS. Many individuals have helped make FreeDOS what it is, but this eBook represents only a few of them. I hope you enjoy this collection of 23 years of everything FreeDOS!