Scary New Malware Uses A Gmail Trick To Steal Your Data - Computers - Nairaland
Nairaland Forum / Science/Technology / Computers / Scary New Malware Uses A Gmail Trick To Steal Your Data (628 Views)
A Dangerous Malware Known As Ransom32 Discovered - Laptop Owners Beware / Sending Executable Files Through Gmail / Who Can Help Hack Into A Gmail Account (2) (3) (4)
(1) (Reply)
| Scary New Malware Uses A Gmail Trick To Steal Your Data by waldigit: 8:24am On Oct 30, 2014 |
A new piece of malware that can spy on a user’s computer has been discovered, Wired reports, with researchers also having found a clever way for the program to communicate with its creators: Google’s popular Gmail email service. Business Loans businesloans.net FROM EARLIER: You can force your way into Google’s Inbox even without an invite Security startup Shape Security says it found a new strain of malware that’s able to read instructions from Gmail drafts and respond to the hacker’s commands without the user actually noticing anything happening on the computer. “What we’re seeing here is command and control that’s using a fully allowed service, and that makes it superstealthy and very hard to identify,” Shape security researcher Wade Williamson said. “It’s stealthily passing messages back and forth without even having to press send. You never see the bullet fired.” For everything to work, hackers first set up an anonymous Gmail account, and then infect a target computer with the malware. After gaining control of the computer, the hacker will remotely open an invisible instance of Internet Explorer in which the Gmail account is loaded. Once that’s done, information can be passed back and forth using the drafts folder. The malware uses a Python script to retrieve commands and code entered into the draft field, and then it can respond in Gmail drafts and can include the data it wants to steal. The malware is apparently a variant of an existing trojan called Icoscript first found by security firm G-Data in August. Icoscript has been infecting computers since 2012, using Yahoo Mail to hide its command and control, before switching to Gmail drafts recently. It’s not clear how many machines have been infected by this malware strain, and there’s no way of easily detecting it, Shape says. Google has not said anything about this particular attack, telling Wired that “our systems actively track malicious and programmatic usage of Gmail and we quickly remove abusive accounts we identify.” More from BGR: You can preorder Google’s incredible Nexus 6 right now [updated] This article was originally published on BGR.com Related storiesYou can preorder Google's incredible Nexus 6 right now [updated]This is Google's boldest search plan yetYou can force your way into Google's Inbox even without an invite BGR News |
(1) (Reply)
Xmax Bonus: Free Business Website For 10 Lucky People / What Can U Call This? / 10 Things You Dont Know About Ambode’s Running Mate
(Go Up)
| Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming techmarket Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10) Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 11 |