READ N’ HEED! Microsoft Sez Collaborative Viruses Can Sync To Fuck Up PCs

______________________________

Microsoft research assumes that two computer viruses that collaborate will be harder to clean from infected PCs. The pair of viruses foils removal by downloading updated versions of their malware partner. Once accidentally downloaded on a PC, the viruses allow hackers to take control over a machine and use it for saleable information or spamming. A blogpost by Microsoft malware researcher Hyun Choi illustrated this close interaction between the two viruses. Mr Choi explained that one often finds the two Windows viruses, known as Vobfus and Beebone, together. Vobfus was usually the first to appear on a machine, he said, and used different tactics to damage its virtual victims. Vobfus could install via booby-trapped links on a various range of websites, travel via network links to other machines, or lurk on USB drives and infect PCs that it’s plugged into.

Vobfus, which installs first, then downloads Beebone, connecting the machine to a botnet… a huge network of infected computers. Mr Choi said, after this, the two malware programs start working together to regularly download new versions of their virus-partner, thus, multiplying cybercrime. He said that was an effective mechanism that helped the virus remain sustainable on infected machines, explaining, “In the case with Vobfus, even if it is detected and remediated, it could’ve downloaded an undetected Beebone, which can, in turn, download an undetected version of Vobfus. The two threat families are intrinsically related”. Mr Choi stated that this “cyclical relationship” helped Vobfus become a persistent issue since 2009, when it first appeared. He explained that defeating the two viruses together was not easy, he said, because Vobfus was very good at travelling via networks. In addition to keeping software up to date, he recommended disabling the “AutoRun” feature on Windows machines, as Vobfus exploits this when it comes via USB drives. In addition, he said, people should be more attentive when they click links on external websites to avoid falling victim to booby-trapped URLs.

2 July 2013

Voice of Russia World Service

http://english.ruvr.ru/2013_07_02/Viruses-sync-to-destroy-PCs-research-9219/

Editor’s Note:

Let’s keep it simple. DON’T CLICK ON EXTERNAL LINKS (hey, guys… that means the link with the image of the gal with the gigundo titties, OK?). That should help you a great deal. Secondly, talk to your geek… they can help you. They have the knowledge that you don’t have. Don’t fuck with your machine without talking with your geek first. You’ll probably screw things up worse. Trust me on this one.

BMD 

 

Advertisement

3 August 2012. UPDATE on the Return… Machine Due Back Next Thursday… Posting to Resume

______________________________

On Tuesday, Nicky and I descended into the belly of the beast… that is, we dared to enter the inner sanctum of the lair of the local geeks. We were in search of John, who had custody of the baby. It was quite ill, I’m afraid. It wasn’t fatal, to be sure, but it was still serious. John had to clean out the interior and then he informed me that he had to do more geekly pokings and jiggerings. He has to reload the OS, backup and wipe the hard disk, kick out some unfriendly viruses and trojans, and install a new “anti-virus that works”. Of course, this isn’t cheap, but what is, these days? Hey, we’re getting off with about 350 bucks, and that’s NOT overly bad, not for skilled technical work. I’ll say this, John explained everything in ungeekly language that anyone could grasp.

ETA for kicking off again is next Thursday, 9 August 2012. That’s the earliest, kids, until then, have a good one.

BMD 

Update 9 August 2012:

John was as good as his word. The baby’s back… better than ever. There’s a few more minor kinks to work out, but that’s no biggie. I hope that you have as good a rapport with your friendly neighbourhood wonks as I did. Thanks, John, NaVada, and Larry… you keep this show on the road.

BMD