The World Cup Football fever is on! Not just for
millions of soccer fans across the globe, but also for malware writers. Security
experts from MicroWorld Technologies inform
that a new email in circulation carries a Trojan named 'Backdoor.Win32.Haxdoor.in',
while offering potential victims a dynamic Schedule of the mega sporting event.
Written in German, the mail talks a few things about the match plan
and hotel bookings to make it look believable. Then it tells you to click on a
link to download the schedule carrying the Trojan. Once inside the computer, Haxdoor.in
moves to lower the security level of the Windows, turns off AntiVirus software,
steals information via keyloggers and opens a backdoor to connect through IRC
channels.
"We had detected another variant of Haxdoor Trojan in
April," says Aneesh Paliwal, Security Analyst,
MicroWorld Technologies. "Named as 'Haxdoor.ie',
it was found to be used by botmasters to turn user computers into Bots and Zombies
that eventually create large botnets out of a cluster of infected machines."
In code and modus operandi, Haxdoor.in is almost identical to its earlier variants
except for the fact that this version comes with its own email engine.
Bots are computers taken over by hackers using Backdoors and Trojans. Such compromised
computers are employed in a plethora of illegal activities like Denial-of-Service
attacks, hijacking of SMTP Mail Servers to spread Spam and wrongfully increasing
the hit count of specific websites. At some point, the hacker takes over almost
every activity on an infected PC.
"There are number of legitimate
websites offering many such schedules and fixtures of World Cup Soccer and other
sporting events alike. Hence, you just can't blame someone for being lured by
such a tempting mail, more so if the recipient is a football aficionado,"
says Govind Rammurthy CEO, MicroWorld Technologies.
"Your first line of defense in these circumstances should be a cautious
approach towards unsolicited mails, even when they offer you moon. But in a world
of Worms and Trojans capable of stealing your friend's address book, malware that
can exploit browser vulnerabilities and viruses spreading via Scripts and ActiveX
Controls, such a defense may just not be enough. For total security, one needs
an intelligent, Real-Time protection that consistently
safeguards computers against every possible malice in the World Wide Web,"
affirms Govind Rammurthy.
MicroWorld
MicroWorld
(www.mwti.net) is the developer of the world's
first Real-Time AntiVirus and Content Security software eScan
for desktops and servers. Its communication security software, MailScan
is the first comprehensive e-mail scanner for your SMTP/POP3 Mail Server. MicroWorld
Winsock Layer (MWL) is the revolutionary technology underlying these products,
powering them to several certifications and awards by some of the most prestigious
testing bodies, notable among them being Virus Bulletin, Checkmark, TUCOWS, Red
Hat Ready, and Novell Ready. Combining their powerful scanner with MWL technology,
MicroWorld solutions provide a Real-Time Proactive security for your systems.
For network security of enterprises, eConceal Firewall is the latest powerful
offering from MicroWorld.
To learn more, kindly visit http://www.mwti.net.
