The Skype is no longer the limit - new ways malware keeps in touch with your friends

David Wood Microsoft

Over time, users have regularly been provided with new methods of communicating online with their social contacts, and malware creators have never been far behind in utilizing these same methods to spread their malicious payloads. While mass emailing worms were once highly prevalent, we have since seen malware graduate to spread via instant messaging, and later via social networking sites as users adopted these technologies. We are now beginning to see malware attempting to use programs such as Skype and Twitter to spread amongst the user community.

This paper investigates malware families that use Skype, Twitter and other such technologies to spread, and which also take advantage of them for other elements of their payload such as for command and control, or for information stealing. We look at the methods the malware uses to interact with these applications and their protocols in order to achieve these aims. We also examine social engineering techniques used by the malware, as well as methods used to attempt to avoid detection by security products, or to otherwise prevent removal from affected systems.

 del.icio.us  digg this! digg this

Quick Links

Poll
Should software vendors extend support for their products on Windows XP beyond the end-of-life of the operating system?
Yes - it keeps their users secure
No - it encourages users to continue to use a less secure OS
I don't know
Leave a comment
View 24 comments

AusCert2014

VB2014
VB2014 VB2014 will take place 24 - 26 September 2014 at the Westin Seattle hotel, Seattle, WA, USA.

Virus Bulletin currently has 231,307 registered users.