Aucune réponse à ce sujet

[News Robot]

<p><strong>August 22, 2012</strong></p>
<p><strong><newslead>Russian anti-virus company Doctor Web is reporting the emergence of the first cross-platform backdoor to run under Linux and Mac OS X. This malicious program is designed to steal passwords stored by a number of popular Internet applications. </newslead> <vir>BackDoor.Wirenet.1</vir> is the first such Trojan capable of running under any of these operating systems.</strong></p>
<p>It's not clear yet how the Trojan, which was added to the Dr.Web virus database as <vir>BackDoor.Wirenet.1</vir>, spreads. This malicious program is a backdoor that can work under Linux as well as under Mac OS X.</p>
<p>When launched, it creates its copy in the user's home directory. The program uses the Advanced Encryption Standard (AES) to communicate with its control server whose address is 212.7.208.65.</p>

<p style="text-align:center"><img src="http://st.drweb.com/static/new-www/news/2012/august/wirenet.png" /></p>
<p><vir>BackDoor.Wirenet.1</vir> also operates as a keylogger (it sends gathered keyboard input data to intruders); in addition, it steals passwords entered by the user in Opera, Firefox, Chrome, and Chromium, and passwords stored by such applications as Thunderbird, SeaMonkey, and Pidgin. Anti-virus software from Doctor Web successfully detects and removes the backdoor, so the threat does not pose a serious danger to systems protected by <a href="http://products.drweb.com/mac/?lng=en">Dr.Web for Mac OS X</a> and <a href="http://products.drweb.com/linux/?lng=en">Dr.Web for Linux</a>.</p>

View the article