Pigeon Poop
02-18-2008, 07:43 PM
Well, it didn't take long.
China has put out another one, this one looks fairly insidious. If you have purchased, or received a digital photo frame recently, there is a possibility that it may contain code that allows hackers to obtain your account information.
Computer Associates discovered it and call it Mocmex. Here is the story (http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/02/15/BU47V0VOH.DTL)from the SF Chronicle.
The Mocmex was first identified as a Trojan horse that collected online games passwords, further studies has revealed its ability to get around more than hundred antivirus vendors and Windows security layers. The malware infected PC only ( Windows!, what else?), and known to download files and hid them randomly with hard to trace patterns, it would then propagated to another PC or other portable storage device as a shelter as soon as it’s plugged into one. CA says Mocmex’s strength is more than just a simple game-password collector, it has the potential for a much bigger attack with its nature to collect personal and private data.
It appears that once a machine gets infected, it begins to propagate thru the autorun feature in your USB ports. Meaning, that once the infected digital frame is plugged into your computer, any other USB device, such as a Flash drive or and iPod, helps transmit this bug.
As far as I can tell, there isn't a fix just yet. The best fix so far is to have your system scanned from a Linux machine or a Mac. Or, just scan the flash drive. This is assuming, of course, that all definitions have been updated.
The bottom line is this: if you have plugged in a Digital Photo frame recently, be very aware. I'll post more when I find more info on this.
China has put out another one, this one looks fairly insidious. If you have purchased, or received a digital photo frame recently, there is a possibility that it may contain code that allows hackers to obtain your account information.
Computer Associates discovered it and call it Mocmex. Here is the story (http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/02/15/BU47V0VOH.DTL)from the SF Chronicle.
The Mocmex was first identified as a Trojan horse that collected online games passwords, further studies has revealed its ability to get around more than hundred antivirus vendors and Windows security layers. The malware infected PC only ( Windows!, what else?), and known to download files and hid them randomly with hard to trace patterns, it would then propagated to another PC or other portable storage device as a shelter as soon as it’s plugged into one. CA says Mocmex’s strength is more than just a simple game-password collector, it has the potential for a much bigger attack with its nature to collect personal and private data.
It appears that once a machine gets infected, it begins to propagate thru the autorun feature in your USB ports. Meaning, that once the infected digital frame is plugged into your computer, any other USB device, such as a Flash drive or and iPod, helps transmit this bug.
As far as I can tell, there isn't a fix just yet. The best fix so far is to have your system scanned from a Linux machine or a Mac. Or, just scan the flash drive. This is assuming, of course, that all definitions have been updated.
The bottom line is this: if you have plugged in a Digital Photo frame recently, be very aware. I'll post more when I find more info on this.