News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
GET RECOGNIZED
Let an ISACA® certification elevate your career.
Register today and save
You are here: Home / Apple/Mac / Malware Takes Aim at Skype Users
DDoS Protection Powered By Verisign
Skype Messages Link to Malware, Make  PCs Bitcoin Slaves
Skype Messages Link to Malware, Make PCs Bitcoin Slaves
By Jennifer LeClaire / NewsFactor Network Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
PUBLISHED:
APRIL
05
2013


Skype users beware. Malware is targeting your favorite messaging app. Kaspersky is sounding the alarm this week with back-to-back posts about malicious campaigns on Skype.

One is a campaign that presents a malicious URL. The other uses its victim's machine to mine Bitcoins. Both are serious, but the second attack is getting major media attention.

Dmitry Bestuzhev, a Kaspersky Lab expert, on Thursday pointed out an infection vector via social engineering that's abusing infected Skype accounts by massively sending messages to contacts, with a link to a photo and the sentence, "I don't think I will ever sleep again after seeing this photo."

A Slave to Bitcoin

"Goo.gl short URL service shows that at the moment there are more than 170k clicks on the malicious URL and only 1 hour ago there were around 160k clicks," Bestuzhev said. "It means the campaign is quite active with around 10k clicks per hour or with 2.7 clicks per second!"

But most of the victims are from Russia and the Ukraine so far. Hours later, Bestuzhev turned his focus to the Bitcoin malware that's trending in Google News. He said it's a similar campaign in terms of propagation but different in terms of origins and purposes. Average clicking is also high, with more than 2,000 clicks per hour. Most of the potential victims live in Italy, followed by Russia, Poland, Costa Rica, Spain, Germany and Ukraine.

"Once the machine is infected it drops to the system many other pieces of malware. Downloads come from the Hotfile.com service. At the same time the malware connects to its C2 server located in Germany," Bestuzhev wrote in a blog post. "So what does malware do? To be honest many things but one of the most interesting is it turns the infected machine to a slave of the Bitcoin generator. The usage of CPU grows up significantly."

Cyber Economics

Alex Horan, a senior product manager at Core Security, said this is simple economics: How much does it cost to rent a large group of machines from a botnet herder? And how much money can I make in that period of time via Bitcoin? If the amount of money to be made is higher than the money to be spent, he said, then you are in business.

"I think some people overthink the motivation and actions of 'bad guys.' Yes, there are absolutely skilled people doing this type of activity explicitly on behalf of their nation or government -- or without explicit instructions, but with patriotic zeal," Horan told us. "But there are a lot more people just out there to make a buck. And if the scam du jour is Bitcoin harvesting via compromised machines then you can expect to see a lot of people -- of varying skill levels -- trying this out."

So how do you stop this? Horan said you can stop Bitcoin the same way you stop most other crimes -- stop it from being profitable.

"If paper money was so simple that you could not tell the difference between a photocopied note and a real one, a lot more people would be photocopying money," he said. "But creating passable counterfeit money requires a significant investment. Bitcoin needs to create some kind of equivalent, some way to distinguish between the actions of a machine that is being enslaved into work vs. those machines that have actively chosen to participate."

Tell Us What You Think
Comment:

Name:

Like Us on FacebookFollow Us on Twitter
TOP STORIES NOW
MAY BE OF INTEREST
Protect 100% of your Data The prevalence of laptops and mobile devices in the enterprise makes corporate data increasingly vulnerable to loss and breach. And yet, workforce productivity is now inextricably linked to mobility. Click here to access the white paper "Top 10 Endpoint Backup Mistakes" to learn more about how to confidently protect data across platforms and devices while also providing features designed to enhance the end user experience.
MORE IN APPLE/MAC
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Who Is the Hacker Group Lizard Squad?
Are they dangerous or just obnoxious? That’s what many are wondering about the hacker group Lizard Squad, which tweeted out a bomb threat that grounded a flight with a Sony exec aboard.
 
Are Government Spies Tipping Off Tor?
Less than a month ago, tech news headlines heralded a Tor Project breach. Now, some are saying that government spies are sharing information with Tor to help it prevent future breaches.
 
Backoff Malware Hits 1,000+ Businesses, Likely More
More than 1,000 businesses across the U.S. might have been affected by Backoff, a new kind of point-of-sale (PoS) malware, according to the Department of Homeland Security.
 

Enterprise Hardware Spotlight
Apple Set To Release Largest iPad Ever
Tech giant Apple seems to have adopted the mantra “go big or go home.” The company is planning to introduce its largest iPad ever: a 12.9-inch behemoth that will dwarf its largest existing models.
 
Alert: HP Recalls 5 Million Notebook AC Power Cords
HP is recalling about 5.6 million notebook computer AC power cords in the U.S. and another 446,700 in Canada because of possible overheating, which can pose a fire and burn hazard.
 
Acer's New Desktop Box Rides the Chrome OS Wave
Filling out its Chrome OS line, Acer is following the introduction of a larger Chromebook line earlier this month with a new tiny $180 desktop Chromebox and also a smaller Chromebook.
 

Mobile Technology Spotlight
Apple Set To Release Largest iPad Ever
Tech giant Apple seems to have adopted the mantra “go big or go home.” The company is planning to introduce its largest iPad ever: a 12.9-inch behemoth that will dwarf its largest existing models.
 
Verizon Hops on the Voice-Over-LTE Bandwagon
Wireless provider Verizon is gearing up for a nationwide launch of its Voice-over-LTE service over the next several weeks, promising clearer and crisper phone calls and a Skype-like video service.
 
Smartphone 'Kill Switch' Law in California; Will Other States Follow?
California’s new law -- signed by Gov. Jerry Brown on Monday -- aimed at deterring cellphone theft could mean most mobile phones sold in the U.S. will soon include similar “kill-switch” tech.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | CRM Systems | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.