January 26, 2007

Thanks to dwergs from Mess.be for reporting this new trojan threat for MSN / Live Messenger:

"Malware going by the name of Msn Live Password Stealer and which does exactly what its name suggests, came on the radar of anti-virus company Sophos earlier this week and was added to their virus database as Troj/Msnfake-M.

Various versions of the password stealer (up until v4) are currently being distributed via Torrents and can very easily be configured, renamed and passed on to victims. When executed, the trojan displays a fake Windows Live Messenger login prompt and any entered username and password is automatically saved into c:\pas.txt (default destination). For the next step, the hacker can decide to show an error message, just terminate the application or terminate it and launch the real client. He can retrieve the stored login details via a pre-set e-mail address.

Sophos already updated their virus definitions files and other anti-virus firms can be expected to follow suit. To protect yourself from this trojan, do not accept and execute suspicious .exe/.bat/.pif/... files. Just to give you an idea, the filesize of this particular trojan is between 1 and 1.5 megabyte."
Posted by dwergs @ Mess.be

Technorati Tags: , , , , , , , , , , , , ,

This Month's Most Popular Posts