Bogus Kama Sutra presentation opens your backdoor to hackers
NSFW 'PowerPoint' file rogers Windows machines
A booby-trapped Kama Sutra-themed presentation will plant a backdoor when run on Windows machines, security watchers warn.
The supposed PowerPoint presentation file – called Real kamasutra.pps.exe* – supposedly demonstrates different sexual positions. The file does include a NSFW slideshow of 13 different positions, but this is just a decoy.
The real purpose of the distribution is to install a Trojan called AdobeUpdater.exe, and identified by net security firm Sophos as Bckdr-RFM. Compromised machines might be used to send spam or spy on users, among other malicious purposes.
Hackers would be able to update compromised machines with other strains of malware, so all manner of badness might be possible, as explained in a blog entry by Sophos's (appropriately monikered, especially in this case) Naked Security blog here. ®
*The malicious file uses the old double extension ruse, a mainstay of virus writing for many years. While a casual glance might fool users into thinking it is a PowerPoint document, the file is actually an executable.
Microsoft eventually gave up on auto-running whatever removeable medium you stick in the machine. It was a daft idea and ten years of security holes eventually rammed the message home.
The same will happen for hiding file extensions, eventually. Till then, we have stories like this.
Old tricks still work
As long as file extensions are hidden by default, scammers will take advantage of it. And, as long as people need to run their computer with Administrator rights just to get their programs to run, scammers will be sending out trojans like this.
Sooner or later, people will get tired of wasting disk space, CPU time and money on anti-virus, anti-malware and anti-spyware programs and switch to an OS that's secure by design and Windows will go the way of the Dodo. Think of it as the computer equivalent of evolution in action.
Enjoying the show with your penguin is just wrong.