Feeds

China charges four over Panda worm

Fujacks stole gamers' IDs

3 Big data security analytics techniques

Four Chinese men have been charged with creating and spreading an internet worm in a rare example of a cybercrime prosecution in the country.

Li Jun, Wang Lei, Zhang Shun, and Lei Lei faced charges in a people's court in Hubei Province on Tuesday over the alleged creation and distribution of the Fujacks worm, Shanghai Daily reports.

The worm converted icons of infected programs into a picture of a panda burning joss-sticks, while surreptitiously stealing the user names and passwords from online games players.

The worm infected an estimated one million Windows PCs in China, the worst ever outbreak, which goes a long way to explaining the hard line taken by authorities over the attack.

25-year-old Li Jun confessed to creating the malware, which he allegedly sold to 12 cohorts - personally making 100,000 yuan ($12,500) in the process. The men face charges punishable by up to to five years' imprisonment if convicted. Li's alleged clients turned co-accused allegedly made their money back and more by selling black-market access to online games.

In a curious development, Chinese police reportedly planned to release a Fujacks clean up program created by Li Jun rather than relying on disinfection tools from anti-virus vendors.

"It remains to be seen whether the powers that be in China act more sympathetically to Li Jun, given that he apparently wrote a program to clean-up the infection," said Graham Cluley, senior technology consultant for Sophos.

"However our recommendation remains to use legitimate anti-virus software to deal with a malware infestation - not to rely on a tool that may have been written by one of the hackers responsible for the outbreak in the first place."

The case illustrates how greed has increasingly replaced mischief as a motive for virus writing, he added. ®

3 Big data security analytics techniques

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Reddit users discover iOS malware threat
'Unflod Baby Panda' looks to snatch Apple IDs
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.