ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Malware latches onto Windows updates

Dawn Kawamoto CNET News.com

Published: 15 May 2007 09:37 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Around 100,000 users have been infected with malware that has piggybacked on Windows updates, according to a report from security research firm Symantec.

A Trojan, which began circulating in March via spammed email, used an "interesting" technique to download malicious files, said the report.

Its method of attack was to download the files by way of a Windows component, the Background Intelligent Transfer Service (BITS).

Vista Upgrade Blog

Vista Upgrade Blog
Grappling with the OS

How is the switch to Vista affecting your workplace? Take a look at our new group blog and share your pain and praise.

Read more +

The trouble, however, is that Windows updates rely on BITS as the main service for downloading patches and keeping the operating system running smoothly. And, because the BITS service is part of Windows OS, it's trusted and can bypass the local firewall as it downloads files.

Javier Santoyo, manager at Symantec's Security Response Center, used this analogy to describe the piggyback technique: "Imagine someone opening a door with a legitimate access badge and an attacker tailgating them to enter the building."

Microsoft said that users would have already had to have been duped, via social engineering, into allowing the TrojanDownloader:Win32/Jowspry to infect their system. Once infected, the Trojan utilises BITS to download additional malware.

The pattern continues unless an infected user scans their system and removes all variants of the Trojan, according to the software giant.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
51 out of 56 people found this useful


Full Talkback thread

0 comments

Company/Topic Alerts

Create a new alert from the list below:







Related Jobs

Web Project Manager/ Web Services Architect 150 -200 12month Contract

Internet technologies; Software engineering background, Experience in UML modelling, design patterns, and software architecture. Experience and ...

Firewalls Engineer Lead

Ensure all firewall related break/fix SLA timescales are met and all associated reporting is completed in a full and timely fashion. Activities and ...

B2B connectivity Network analyst city based investment bank 6 months

Skills Exp of B2B network architect design in finance environments Detailed exp of Cisco Catalyst products Detailed understanding and exp of BGP, ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment