Massive Malware Circulation via Skype: Kaspersky

"LOL is this your new profile pic" is the malicious Skype message clubbed together with a shortened URL for circulating spiteful software through Skype message. This malicious content was clicked for over 480,000 times within 2 hours, claimed Kaspersky Lab Threat Analyst, Dmitry Bestuzhev, as reported in the website cso.com.au on October 11, 2012.

The compact URL is still receiving a few clicks and till now, it has racked up over 1 Million clicks in four days, starting from October 6, 2012.

According to Bestuzhev, almost half the clicks generated within 48 hours of the release of this malware, indicating that a huge number of contacts must have been infected during this term.

Nevertheless, the most pathetic part of it is that initially, only 2 of the present 44 antivirus engines identified the threat, but currently the number has increased to 27, which is still quite low. However, it also indicates that about 1 Million users must have clicked o the links and greeted infection on the links.

To strengthen the whole campaign, the malware distributors further translated the message into other languages including Latvian and Spanish ensuring that many Internauts are also included in this scheme.

Besides, the malware detected in this campaign is identified as Trojan.Win32.Bublik.jdb by Kaspersky, which is capable of controlling the affected machine. Beside the issue of Ransomware and click-fraud, ability to steal passwords associated with adult websites, file lockers, online banking and social media, including PayPal, Yahoo, Facebook, Netflix, The Pirate Bay, GoDaddy, and eBay is also raising concern in this case, added the security expert.

The Trojan also has the functionality of Autorun for spreading via USB devices. It has the ability of spreading through MSN Messenger and locally saved Skype passwords in the similar infected machine, thus switching automatically amid the available accounts.

As a recommendation, Kaspersky concluded that to safeguard oneself from this malware, don't click on links that are offered through Skype or through any other instant messaging service. Also, never download unknown archives and extract zip files for opening files, especially if you are unaware of the content.

Related article: McAfee Slams Microsoft over Vista Security

» SPAMfighter News - 10/20/2012