Language Selection

English French German Italian Portuguese Spanish

Worm poses as pirated 'Grand Theft Auto'

Filed under
Security

A worm that targets gamers is making the rounds, tapping into popular titles and peer-to-peer file sharing, a security company has warned.

The worm, Hagbard.A, tries to disguise itself on peer-to-peer networks as pirated downloads of the popular games titles "Grand Theft Auto: San Andreas," "Need for Speed Underground 2" and 400 other programs, Sophos said in an advisory released on Friday.

The downloaded program will copy itself to the file-sharing folder on the compromised PC and attempt to spread using Windows Messenger. An instant message sent to others on the service contains a link to the worm and reads: "please download this...its only small brb."

"Because this worm can arrive in the form of an instant message, some users may be fooled into thinking it has come from a friend or colleague, rather than a virus on their PC," Graham Cluley, senior technology consultant for Sophos, said in a statement.

In addition, Hagbard puts a new twist on instant-messaging worms, security experts said, because it installs a Web server program on the infected computer. That could enable malicious attackers to gain remote access to data.

"This one has an interesting behaviour," said Art Gilliland, director of product management at IMLogic, an instant-messaging security provider. "It downloads a Web server to give someone remote access, which is more malicious than the spyware or adware that gets downloaded onto systems from other IM worms."

More of these malicious IM worms may be in the works, as virus writers go from testing the technology to putting it into full-scale use, Gilliland added.

Although Hagbard carries a different bite than other worms, it has not spread as rapidly as other viruses, security experts said.

"We haven't seen a larger number of reports. But that may not be surprising, because most of our customers are enterprises," Cluley said, noting that Hagbard's prevalence is currently rated low. "If it does break out, it will likely be a problem with home users, because most companies prohibit file sharing."

By Dawn Kawamoto
ZDNet

More in Tux Machines

10 tips for easier collaboration between office suites

Yes, you are likely using the Microsoft formats for your documents. However, they don't always follow OpenDocument Format (ODF) standards. Instead of opting for the proprietary Microsoft formats, switch over to one that's welcomed by nearly all office suites: ODF. You'll find a much more seamless collaboration process and fewer gotchas when moving between office suites. The only platform that can have a bit of trouble with this format is Android. The one Android office suite that works well with ODF is OfficeSuite 7 Pro. Read more

Outsourcing your webapp maintenance to Debian

It turns out that I'm not the only one who thought about this approach, which has been named "debops". The same day that my talk was announced on the DebConf website, someone emailed me saying that he had instituted the exact same rules at his company, which operates a large Django-based web application in the US and Russia. It was pretty impressive to read about a real business coming to the same conclusions and using the same approach (i.e. system libraries, deployment packages) as Libravatar. Regardless of this though, I think there is a class of applications that are particularly well-suited for the approach we've just described. If a web application is not your full-time job and you want to minimize the amount of work required to keep it running, then it's a good investment to restrict your options and leverage the work of the Debian community to simplify your maintenance burden. The second criterion I would look at is framework maturity. Given the 2-3 year release cycle of stable distributions, this approach is more likely to work with a mature framework like Django. After all, you probably wouldn't compile Apache from source, but until recently building Node.js from source was the preferred option as it was changing so quickly. While it goes against conventional wisdom, relying on system libraries is a sustainable approach you should at least consider in your next project. After all, there is a real cost in bundling and keeping up with external dependencies. Read more

How Intel HD Graphics On Linux Compare To Open-Source AMD/NVIDIA Drivers With Steam On Linux

As earlier this week I did a 20-way AMD Radeon open-source comparison, looked at the most energy efficient Radeon GPUs for Linux gaming, and then yesterday provided a look at the fastest NVIDIA GPUs for open-source gaming with Nouveau, in this article is a culmination of all the open-source graphics tests this week while seeing how Intel Haswell HD Graphics fall into the mix against the open-source Radeon R600/RadeonSI and Nouveau NV50/NVC0 graphics drivers. Read more

Leftovers: Gaming