Government Technology

YouTube Video Used to Conceal Worm


You May Also Like

June 13, 2007 By

A new worm, SpreadBanker.A, uses a YouTube video to trick users and spread, according to PandaLabs. The worm has two components. When the user runs the first of these, it connects to the YouTube page and displays a video. The problem is that at the same time it is downloading the second part of the worm.

SpreadBanker.A is programmed to steal passwords entered in several online banks. Similarly, it can steal the login details for a range of games including Age Of Mythology, GTA, Unreal Tournament, WarCraft or Final Fantasy.

It also makes modifications to the Windows registry and creates copies of itself in several folders belonging to P2P file-sharing applications. These copies have enticing names such as "sexogratis" or "crackwindowsvista" to attract users of these networks and spread.

The worm also modifies the hosts file to block access to several Web pages related with security products.

"Malware is becoming increasingly sophisticated. In this case it combines the propagation features of worms with the ability of Trojans to steal passwords. This way, cyber-crooks hope to squeeze the maximum profit out of each infection," explains Luis Corrons, technical director of PandaLabs.


You may use or reference this story with attribution and a link to
http://www.govtech.com/security/YouTube-Video-Used-to-Conceal-Worm.html


| More

Comments


Add Your Comment

You are solely responsible for the content of your comments. We reserve the right to remove comments that are considered profane, vulgar, obscene, factually inaccurate, off-topic, or considered a personal attack.

GovTech Papers and Case Studies View Library


Sponsored Links



Phone RSS

Government Best Practices

» A New Model for Human Resources
» Abandoning the High Cost of Enterprise Content Management



Government Technology
Public CIO
Emergency Management
Digital Communities