Monday July 21, 2008 7:53 AM AEST

SC Magazine Australia/NZ > News > Mobile > Wi-fi Security > Fake MP3 attack hits 360,000 PCs

Vulnerability Alerts

SANS

Microsoft

MS08-040 – Important: Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203) - Version:1.4
Microsoft Security Bulletin Summary for June 2008

CERT/CC

Latest Comments

"No Comment"

on Mozilla Messaging fixes five bugs in Thunderbird email client

by Phillip Vachon | Jul 21, 2008 4:13 AM

"thankx dear ihave my massege"

on Ads on Facebook serving up adware

by muhammad shehzad ashraf | Jul 20, 2008 1:05 AM

"kdjfkjasd"

on HP WebInspect 7.7

by fdsf | Jul 19, 2008 10:19 PM

"Hacked? No, it was not hacked. Lots of people were told to search for it. That's all."

on Google Trends hacked again

by kgh0st | Jul 19, 2008 3:33 PM

""..but experts are poring over the site's logs to find the vulnerability that allowed the ..."

on Popular porn site hacked by prudes

by J | Jul 18, 2008 9:54 PM

Wi-fi Security

Fake MP3 attack hits 360,000 PCs

By Shaun Nichols
May 9, 2008 9:47 AM
Tags: Fake | MP3 | attack | hits | 360,000 | PCs

The social engineering attacks purport to offer MP3 files or Mpeg movie files.

On downloading and launching the file, the user is prompted to launch an executable called 'play_mp3.exe' which installs adware.

Instead of a movie or song, the user gets a pair of adware tools for the Firefox web browser. If the user does not have Firefox installed, an error message asks the user to install the software.

McAfee researcher Craig Schmugar explained that the fake files have been traced to the fastmp3player.com domain. McAfee has detected the attacks on more than 360,000 machines, including more than 120,000 in the past 24 hours.

"This is one of the most prevalent pieces of malware in the past three years, " he said. "We have never had a threat this significant that arrives as a media file."

The malware launches a multimedia tool which Schmugar described as "simply a browser control wrapped in an executable".

"In the end you are left with a fake MP3 file taking up space, a worthless MP3 player, and adware that displays popup and pop-under ads," he said.

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Most Read
Most Discussed
Latest News

Mobile Whitepapers

Fake MP3 attack hits 360,000 PCs

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management