Regresar al Archivo de Noticias

New malware variations from the Trojan.Upd family block software updates

April 08, 2010  Malware News

Experts are warning about new functions in various malware that their producers are fitting in to increase their effectiveness. Recently there have been reports, for instance, in the Trojan.Upd family of attacks on processes that ensure individual program updates. In practice, this means that in order to break into the victim’s computer, it uses known vulnerabilities in, for example, Adobe Reader and then according to the attacker’s instructions tries to exercise its main activity (taking control of the computer, sending sensitive data, etc.). Afterwards it tries to disable the program’s update process which in this case would be AdobeUpdater.exe. Although it may be detected sometime in the future and removed by security software, it would still be able to use the same security holes that would otherwise been fixed by the program’s updates.

Regresar al Archivo de Noticias