iTWire - Attacker mocks victims, says Symantec

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Information Technology News

Attacker mocks victims, says Symantec

Attacker mocks victims, says Symantec

E-mail

by Stephen Withers
Monday, 26 February 2007
An attacker posing as a representative of a hosting or collocation company is trying to fool people into installing a remote administration tool on their servers, according to Symantec's Security Response Weblog. Featured Whitepaper 5 Best Practices for Smartphone Support Presented as "a security guard script" provided as part of the maintenance package, it is an encoded version of the NSTView admin program. The script also sends a notification email to the attacker containing the IP address of the system (in encoded form) it is running on. Adding insult to injury, the script identifies the sender as "L4M3r" ("lamer"). Presumably as a precaution against the destination email address being shut down, the script also opens an HTML page which contains a hidden reference to a certain server. By checking the logs of that system, the attacker can identify sites that have requested pages from that server and that must therefore be running the script. In other news, Symantec has identified a Trojan dubbed Pirlames masquerading as a Japanese screensaver and spreading via the Winny filesharing network. It overwrites files that have .TXT, .JPG, .ZIP extensions or no extension at all with manga-style images. According to Symantec, this Trojan was created with the P2P-Destroyer Pro tool.{moscomment} Tags See All Tags Blog Japan Malware Security Software Stephen Withers Web Windows Powered By Joomla Tags Please enable JavaScript in your browser to post your comment!

< Next story in category		Previous story in the category >

Sponsored Releases

Thunderhead Appoints Phil Walker as Managing Director of Asia Pacific and Europe

Heathrow Airport Terminal 5 Live with Progress Software

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

...Promote your press-releases here

Latest jobs

Applications Project Manager (.Net) (Q2)
SharePoint Migration Specialist (Q2)
Multiple Project Managers ? Generalist Skills (Q2)
SharePoint Migration Specialist (Q2)
Project Administrator
Midrange Team Leader
Solution Architect
Project Administrator
Midrange Team Leader
Solution Architect

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking