Worm poses as porn-purging program
Print storyXXX Baba-C-on-PC action
Posted in Anti-Virus, 18th January 2005 17:21 GMT
Free whitepaper – Avoiding 7 common mistakes of IT security compliance
A new mass-mailing worm which tries to scare naive users into running it by saying pornographic content has been found on their PCs has begun doing the rounds. Users are told that adult material on their PC can be hidden by running an attached program called "Evidence Cleaner", actually the Baba-C worm.
Baba-C turns the frequent trick of offering malware posing a XXX-material on its head by offering to remove adult content from Windows PCs. The end result is much the same though. Users duped into running Baba-C further the spread of the worm and open up backdoor access to their Windows system.
Although there have only been a small number of reports of the Baba-C worm, vigilance (and update anti-virus signatures to detect the worm) is never a bad thing. Emails sent by the worm (screenshot) typically arrive with the subject: "Important! XXX sites found on your computer!" ®
Related stories
MyDoom returns (posing as passwords to XXX sites)
Italian Senate in gay porn worm attack outrage
Trojan poses as naked XXX pics
Trojan serves porn off home PCs, not many dead
Porn diallers and Trojans the new face of malicious code
Gadzooks! My PC has the pox
Free whitepaper – Certify your software integrity with Thawte code signing certificates
The best practices guide for application security
Reducing messaging and web security costs with managed services
Avoiding 7 common mistakes of IT security compliance
Certify your software integrity with Thawte code signing certificates
The future of SaaS and IT infrastructure management
Feds: Hospital hacker's 'massive' DDoS averted
Buggy 'smart meters' open door to power-grid botnet
Microsoft knew of nasty IE bug a year before attacks
BlockMaster SafeStick hardware-encrypted USB drive