P2P Video And Music Download Security Threat
2005-12-14 10:25:00
A series of files are being circulated across the Internet at peer to peer networks that allegedly contain music and videos, but also include adware -- an IST Toolbar -- in order to download videos and music, said PandaLabs, the research and development arm of Panda Software USA, a software-security company.
The adware program often is used as an entry-point for various cyber threats from viruses to Trojan Horses that can cause damage to their computer systems. "In the past six months we've seen a trend in multi-stage attacks against machines," Patrick Hinojosa, chief technology officer at Panda Software USA, said Wednesday. "There are several reasons for this. Either those launching the attacks haven't determined what they want to use the machines for or they want to install a general purpose program so they can take control of the machine."
Many times this is a precursor to creating a bot network, Hinojosa said. Panda has developed security signatures to detect this program that is automatically distributed to its customers through the Internet.
Those downloading the files are required to also download a license to play the files, which involves agreeing to install adware. The files, alleged video file (*.wmv) or de audio file (*.wma), received by PandaLabs do not contain video or music. The files are detected by Panda Software as WmaDownloader.B.
Hinojosa said many of these sites being affected contain "illicit" copyrighted media content. "I don't think it's going across America Online at the moment, but mainly the backdoor P2P illegal file sharing networks," he said.
When the files launch on the computer, a window is displayed that prompts the user to acquire a license. The message explains to get the free license they must install an IST Toolbar. When this message is displayed, the user is also asked to install an ActiveX Control, which is the IST Toolbar mentioned in this window. Users that don't agree to install the program will not be affected, but neither will they have the ability to play the video or audio file.
If users agree to install it, the IST Toolbar will be downloaded, infecting the system and allowing the file to be played, if it exists. A window notifying users that they must acquire a license will also appear.
|
|
Host Color Completes New Version Of Its Control Panel
Host Color (www.hostcolor.com), a US shared web hosting provider, has announced the end of development work on the new milestone version 2 of its own NextColor hosting control panel.
Google investment in AOL could lead to 2008 IPO
Google Inc.'s $1 billion investment in America Online could lead to an IPO in 2008, giving the online search engine leader and AOL parent Time Warner Inc. an opportunity to capitalize on an Internet advertising boom that they hope to fuel through their partnership.
Search engine to offer limited access to paid content
Congoo.com, a new online search engine, will provide visitors with free limited access to articles normally sold by publishers.
More women tuning in to podcasts
Podtrac, a leader in connecting podcasters and advertisers, today announced survey findings that benchmark the podcast audience and paint a picture of who is tuning in to podcasts and how often.
Cell Phone Users Dissatisfied With Online Help: Report
Web access is extremely important according to 83% of cell phone users, yet only 29% are currently satisfied with using online help to resolve wireless data problems, according to a report by Detacon Inc.
McAfee, MSN Extend Security Deal To Dial-up Subscribers
McAfee will provide its top-of-the-line consumer anti-virus and firewall software to subscribers of MSN's dial-up service in early 2006, the security company said Wednesday.
China cracks down on cellphone spam
China will begin requiring prepaid cell phone subscribers to register their devices using their real names in 2006, the country's Minister of Information Industry said Tuesday.
Microsoft, Softbank BB, Japan Telecom team on VoIP
Microsoft is making another move in VoIP, this time in Japan in a partnership with Softbank BB and Japan Telecom that will offer a combination VoIP with e-mail, groupware, and desktop services, the company said Wednesday.
Super Bowl Clamping Down On Racy Ads, Go Daddy Says
Doman registrar Go Daddy Software Inc., which caused a stir during the 2005 Super Bowl with its racy ad, said Wednesday it has an even chance, at best, of getting a 30-second spot on next year's football championship.
Trump, "Penis Patch" in list of top 2005 junk mail
Ads mentioning real estate tycoon Donald Trump and those hawking "Penis Patch" body enhancements were among the top 10 junk e-mails in 2005, according to America Online.
|
