Computer Trojan Impersonates Adobe Reader UpdaterSecurity researchers of a Vietnam-based security purveyor Bach Khoa Internetwork Security (BKIS) have spotted a computer Trojan. The Trojan imitates itself above the update components of reputed software. Only the systems that run on Windows OS are affected by the programs, and can interpolate software products such as Java and Adobe Suites, as both of them are repeatedly updated. Titled W32.Fakeupver.trojan by BKIS, the malware is developed in Visual Basic. It employs the technique to dupe even the experienced users. Researchers said that the original file is overwritten by this spiteful executable, hence breaching legit utility, making it more difficult to detect. As stated by the senior security researcher and security director at BKIS, Nguyen Minh Duc, regular users, and sometimes even the virus researchers are easily duped and miss such malware, as per the news published by Softpedia on March 25, 2010. The security vendor also demonstrated the screen shots of a version of the malware which copies Adobe Reader Version 9, and overwrites AdobeUpdater.exe, which often checks in with the software to check the availability of a new version. If users open up malicious e-mail links or visit the sites which aim at particular software vulnerabilities, they can unknowingly install malware on their systems. This malware, after entering the system, opens a DNS client, DHCP (Dynamic Host Configuration Protocol) client, a port and a network share so as to receive commands, the security vendor said. In the meantime, security experts in the context commented that such a case wherein malware behaves as an installer or an updater for the applications like Flash or Acrobat of Adobe is not a new thing. Trustworthy software installed for system security must spot the malware, but, people who are infected may experience sever damages even if the malware is cleaned up. According to Rik Ferguson, Trend Micro's security advisor, even after the malware is removed, users will suffer from a loss of auto-updating utility of any software which is affected. This would certainly leave the users open to further exploitation if the critical flaws are not fixed, as per the news published by MX Logic on March 25, 2010. Related article: Computer Virus Writers Adopt New Strategy ยป SPAMfighter News - 4/5/2010 |
Dear Reader
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!



