gfxgfx
 
Please login or register.

Login with username, password and session length
 
gfx gfx
gfx
75481 Posts in 13225 Topics by 2649 Members - Latest Member: SimoSaraMia February 20, 2018, 11:21:08 am
*
gfx*gfx
gfx
WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Malware inserted on PC production lines
gfx
gfxgfx
 

Author Topic: Malware inserted on PC production lines  (Read 347 times)

0 Members and 1 Guest are viewing this topic.

Offline DaBees-Knees

  • WMW Team
  • *****
Malware inserted on PC production lines
« on: September 14, 2012, 03:07:16 am »
Not strictly p2p related, but an interesting news item none the less.

Quote
Cybercriminals have opened a new front in their battle to infect computers with malware - PC production lines.

Several new computers have been found carrying malware installed in the factory, suggests a Microsoft study. One virus called Nitol found by Microsoft steals personal details to help criminals plunder online bank accounts. Microsoft won permission from a US court to tackle the network of hijacked PCs made from Nitol-infected computers.

Domain game
 
In a report detailing its work to disrupt the Nitol botnet, Microsoft said the criminals behind the malicious program had exploited insecure supply chains to get viruses installed as PCs were being built. The viruses were discovered when Microsoft digital crime investigators bought 20 PCs, 10 desktops and 10 laptops from different cities in China.

Four of the computers were infected with malicious programs even though they were fresh from the factory.

Microsoft set up and ran Operation b70 to investigate and found that the four viruses were included in counterfeit software some Chinese PC makers were installing on computers.

Nitol was the most pernicious of the viruses Microsoft caught because, as soon as the computer was turned on, it tried to contact the command and control system set up by Nitol's makers to steal data from infected machines.

Further investigation revealed that the botnet behind Nitol was being run from a web domain that had been involved in cybercrime since 2008. Also on that domain were 70,000 separate sub-domains used by 500 separate strains of malware to fool victims or steal data.

"We found malware capable of remotely turning on an infected computer's microphone and video camera, potentially giving a cybercriminal eyes and ears into a victim's home or business," said Richard Boscovich, a lawyer in Microsoft's digital crimes unit in a blogpost.

A US court has now given Microsoft permission to seize control of the web domain, 3322.org, which it claims is involved with the Nitol infections. This will allow it to filter out legitimate data and block traffic stolen by the viruses.

Peng Yong, the Chinese owner of the 3322.org domain, told the AP news agency that he knew nothing about Microsoft's legal action and said his company had a "zero tolerance" attitude towards illegal activity on the domain.

"Our policy unequivocally opposes the use of any of our domain names for malicious purposes," Peng told AP.  However, he added, the sheer number of users it had to police meant it could not be sure that all activity was legitimate. "We currently have 2.85 million domain names and cannot exclude that individual users might be using domain names for malicious purposes," he said.

Offline Cobra

  • Forum Member
  • I'm not me.
Re: Malware inserted on PC production lines
« Reply #1 on: September 30, 2012, 11:18:48 am »
It's scary as hell what can be done on computers these days against their owners' wishes.

Downloading is an addiction I do not want to give up.

Offline Bluehaze

  • Forum Member
    • Realms Beyond
Re: Malware inserted on PC production lines
« Reply #2 on: September 30, 2012, 12:27:21 pm »
Yes!

I know it is not a perfect solution. Malware-types can have access to a pc assembly line, and they sometimes could be found working in famous software making companies, but my practise has long been, when buying a new or used pc, to reformat it. I suppose I'd be alright, as long as I didn't "reintroduce" the malware, unwittingly, during the reformat! I've even had av programs scanned for viruses and malware.

Some of you will remember the old days when netbus and sub7 were the big news (in the 1990's). Unhappily, in the late 1990's, I was "netbused." It was an eye-opener, as I just could not believe any pc rogue carred about my pc. I had to learn better...Sigh.
"As one grows older, one becomes wiser and more foolish,"
Francois de La Rochefoucauld

WinMX World :: Forum  |  Discussion  |  WinMx World News  |  Malware inserted on PC production lines
 

gfxgfx
gfx
©2005-2018 WinMXWorld.com. All rights reserved.
SMF 2.0.15 | SMF © 2017, Simple Machines
Page created in 0.03 seconds with 21 queries.
Helios Multi © Bloc
gfx
Powered by MySQL Powered by PHP Valid XHTML 1.0! Valid CSS!