Trojan Hides in Google Groups

Posted on September 12, 2009. Filed under: News, Security, Super Fast Updates, Web | Tags: , , , , , , , , , , |

     

  Virus Writers in an effort to evade detection, they’ve begun hiding their command and control instructions in legitimate Web 2.0 sites such as Google Groups and Twitter.

   It becomes increasingly difficult to identify and shut down such sources. It’s a concept very similar to that of chaffing and winnowing. Symantec has observed an interesting variation on this concept in the wild.

   Recently, security vendor Symantec spotted a Trojan horse program that’s been programmed to visit a private Google Groups newsgroup, called escape2sun, where it can download encrypted instructions or even software updates.

   These "command and control" instructions are used by criminals to keep in touch with hacked PCs and update their malicious software. Researchers have also seen criminals hide their messages in RSS feeds that are set up to broadcast Twitter messages, said Gerry Egan, a director with Symantec Security Response. "We’re seeing a trend toward using more mainstream social media-type interactions to hide command and control", he said.

For more details and information visit here

Advertisements

Liked it here?
Why not try sites on the blogroll...

%d bloggers like this: