SBS - The Best Value in QMS software

Hackers Tune In to Windows Media Player - Two new Trojans

Marc

Fully vaccinated are you?
Staff member
Admin
#1
Hackers Tune In to Windows Media Player
By Ryan Naraine
January 10, 2005

Hackers are using the newest DRM technology in Microsoft's Windows Media Player to install spyware, adware, dialers and computer viruses on unsuspecting PC users.

Security researchers have detected the appearance of two new Trojans, Trj/WmvDownloader.A and Trj/WmvDownloader.B, in video files circulating on P2P (peer-to-peer) networks.

According to Panda Software, both Trojans take advantage of the new Windows anti-piracy technology to trick users into downloading spyware and adware applications.

"When a user tries to play a protected Windows media file, this technology demands a valid license. If the license is not stored on the computer, the application will look for it on the Internet, so that the user can acquire it directly or buy it," Panda Software explained.

An unsuspecting user attempting to download the DRM (digital rights management) license will instead be redirected to a Web site that loads a large quantity of adware, spyware, modem dialers and other viruses, the company said in an advisory.

"It's pretty ingenious," said Patrick Hinojasa, chief technical officer at Panda Software. "To take an anti-piracy feature and use it to feed spyware is extremely ironic."

Hinojasa told eWEEK.com that the use of Windows Media files as a spyware vehicle is another sign that virus writers and companies supporting spyware are looking for new entry points to infect computers.

"In this case, they're using technology meant to secure content. It just shows that the more bells and whistles you add to the technology, the more you open doors for the bad guys," he said.

Even though these Trojans have been detected in video files on P2P networks such as Kazaa or eMule, Hinojasa warned that these files can be distributed via e-mail, FTP or other Internet download avenues.

Ben Edelman, a Harvard University student who tracks and comments on the spyware scourge, also spotted the spyware-laden media files. In a research note, Edelman posted a demonstration of the exploits and warned that users with older versions of Windows will receive "confusing and misleading messages" regarding the DRM licenses.

After attempting to download the DRM, Edelman said: "On a fresh test computer, I pressed Yes once to allow the installation. My computer quickly became contaminated with the most spyware programs I have ever received in a single sitting."

"All told, the infection added 58 folders, 786 files and an incredible 11,915 registry entries to my test computer. Not one of these programs had showed me any license agreement, nor had I consented to their installation on my computer," he added.
 
Elsmar Forum Sponsor

Marc

Fully vaccinated are you?
Staff member
Admin
#3
I'm continually amazed at how far some of this has come and what people will do.
 
#4
typo
Marc said:
I'm continually amazed at how far some of this has come and what people will do.
Yes. And it amazes me how obviously intelligent people persist in using their gifts so poorly. no.gif Imagine if all that energy could be turned into something positive and constructive...

/Claes
 
Last edited:

Wes Bucey

Prophet of Profit
#5
Some of my correspondents tell me they see a lot more attacks coming from eastern Europe and Asia and the attacks are more focused at co-opting "virgin" servers to launch either spam or denial of service attacks. Further, the attempts are almost always tied to some way to make money from the gambit, either by picking up income for "hits" spawned by spam or from extortion ("pay up or we'll shut you down" [with a denial of service attack])

We're not in Kansas any more, with pimple-faced boys out to impress each other with hacking exploits.
 
Thread starter Similar threads Forum Replies Date
Marc Hackers unleash smart Twitter phishing tool that snags two in three users IEC 27001 - Information Security Management Systems (ISMS) 7
Marc Hackers Scrape LinkedIn Member Profiles After Work and Weekend Discussion Topics 12
Wes Bucey Hackers now aiming at Mac users After Work and Weekend Discussion Topics 1
Marc Hackers Use Banner Ads on Major Sites to Hijack Your PC After Work and Weekend Discussion Topics 4
W Hackers and software developers - Colleagues working to make software better? After Work and Weekend Discussion Topics 4
B Does anybody know how to get older versions of Minitab to work in Windows 10? Quality Tools, Improvement and Analysis 9
Ninja Windows 10 100 % disk use after update Coffee Break and Water Cooler Discussions 33
G Windows 10 OS build Software Validation US Food and Drug Administration (FDA) 1
Claes Gefvenberg Windows 8.1 - Pros & cons, hints & tips. After Work and Weekend Discussion Topics 5
Jim Wynne Windows 8.1: No Security Updates Without Update 1 After Work and Weekend Discussion Topics 4
Marc Windows XP EOL scamware After Work and Weekend Discussion Topics 1
insect warfare IRS pays Microsoft for Windows XP support After Work and Weekend Discussion Topics 2
insect warfare Windows XP support ends today (April 8, 2014) After Work and Weekend Discussion Topics 2
T Will the End of Windows XP Support affect anything in AS9100? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
K COTS Validation: Should we validate Windows after each Update? IEC 62304 - Medical Device Software Life Cycle Processes 3
G When to use a flyscreen on windows? Food Safety - ISO 22000, HACCP (21 CFR 120) 8
Jim Wynne Have you tried Microsoft Windows 8? After Work and Weekend Discussion Topics 25
Marc The "I am calling you from Windows" telephone scam After Work and Weekend Discussion Topics 13
Z Tutor For Windows--CMM Software--Is anyone familiar with it? Calibration and Metrology Software and Hardware 2
D Windows CE Operating System - Implantable Blood Pump and a Software Accessory Device IEC 62304 - Medical Device Software Life Cycle Processes 8
Stijloor Importing Address Books (Thunderbird and Outlook Express) into Windows Live Mail After Work and Weekend Discussion Topics 3
Marc 66% of All Windows Users Still Use Windows XP After Work and Weekend Discussion Topics 19
Stijloor Briefcase on Windows 7... After Work and Weekend Discussion Topics 29
S Google phasing out use of Windows over security concerns After Work and Weekend Discussion Topics 0
Claes Gefvenberg Microsoft Windows users: Which windows version are you using? March - April 2010 After Work and Weekend Discussion Topics 37
S Software changes (windows 2007 compatible) notification to FDA? 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 5
Jim Wynne February 2010 Windows Update Causes BSOD for Alureon Rooted XP Users After Work and Weekend Discussion Topics 8
J Google Offers Peek at Operating System, a Potential Challenge to Windows After Work and Weekend Discussion Topics 2
S Does Windows Service Pack (SP-3) upgrade need supplementary 510(k) submission?? 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 6
Marc FSF Attacks Windows 7's "Sins" In New Campaign After Work and Weekend Discussion Topics 1
F Is self-serve password reset for Windows considered for validation under CFR Part 11 Qualification and Validation (including 21 CFR Part 11) 2
A If you use Magic Windows Professional SPC Software. Please Reply Quality Manager and Management Related Issues 1
Marc Cloning a Windows XP drive and Booting from a Firewire Clone After Work and Weekend Discussion Topics 4
DanteCaspian Looking for Windows Media Player Help After Work and Weekend Discussion Topics 3
bobdoering From MS: Guidance on Windows Deployments for Business Customers After Work and Weekend Discussion Topics 0
Stijloor Microsoft's Ballmer: Windows 7 is nearly final After Work and Weekend Discussion Topics 13
A Critical Windows Patch - All Version - 24 October 2008 After Work and Weekend Discussion Topics 6
Marc NNTP Usenet Readers for Windows - Suggestions and Reviews After Work and Weekend Discussion Topics 4
ScottK Safari for Windows is out today. After Work and Weekend Discussion Topics 9
Stijloor The 20 (Mostly Free) Downloads for MS Windows Computers You Can't Do Without After Work and Weekend Discussion Topics 2
Claes Gefvenberg Upgrading the Windows OS PC? After Work and Weekend Discussion Topics 29
B Which Quality system? Company produces aluminum windows - No automotive ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 10
Claes Gefvenberg So, how about Microsoft Windows Vista? After Work and Weekend Discussion Topics 85
Marc Vinyl Replacement Windows - 'Weeping' condensation at Glass / Vinyl Interface After Work and Weekend Discussion Topics 20
J MS Windows XP Pro Hard Drive Defrag (defragmentation) question After Work and Weekend Discussion Topics 26
Marc CrossOver public beta: Allows Windows apps to run without Windows on Intel-based Macs After Work and Weekend Discussion Topics 0
Marc Another Windows Vista Feature Bites the Dust - PC-to-PC synchronization After Work and Weekend Discussion Topics 1
Marc Intel-Macs owners now have an official second OS option - Windows XP After Work and Weekend Discussion Topics 10
B Keeping your Windows PC running Smoothly After Work and Weekend Discussion Topics 18
Marc Extremely Critical Windows Security Hole - 29 December 2005 After Work and Weekend Discussion Topics 0

Similar threads

Top Bottom