Systems With .NET Framework Vulnerable to Trojan Attack

An Internet security firm BitDefender recently issued a warning about a new Trojan variant that can run on any computer system with .NET framework.

The security firm has detected the Trojan as Backdoor.MSIL.Bot.A. The backdoor initiates a sequence of threats. It is aimed at disabling antivirus solutions and acquiring user data.

This malware has the capability to attack the PCs running the latest Windows versions, including Windows 7 and Windows Vista, which is due to the preinstalled .NET framework in these versions. Thus, all the users having these latest versions on their PCs are vulnerable to this malicious threat.

It is interesting to note that .NET based languages, unlike other programming languages like C++, make it much simpler to do a number of tasks with just a few lines of code. This will probably lead to an increase in the number of malevolent programs based on .NET framework. It will also increase the productivity and the efficiency of upcoming malware writers.

One of the most striking features of this backdoor Trojan is that it hunts for particular antivirus software installed on target PC and make efforts to block their mechanisms, thus disabling them. Such kind of behavior is rather unusual for a Trojan, as majority of them don't try to kill antivirus software. But for those that do target antivirus solutions, this Trojan is especially inspiring, with a longer list of antivirus solutions on the target.

Moreover, in order to evade user's attention, it becomes apparently invisible. The backdoor Trojan will only show up its icon when the user performs an "Alt+Tab" operation, thus providing the chances of switching to the invisible window.

Finally, in such an e-threat, a remote assailant illegally gains access to a victim's PC and ultimately establishes full control over it. Now the affected machine becomes an ideal place for harvesting sensitive user data.

As security experts always advise, installing and regularly updating a comprehensive anti-malware software is the only effective way to prevent falling victim to these malicious attacks.

Related article: Saskatoon Police Warn Against Fake Financial E-Mail Scam

» SPAMfighter News - 7/5/2010