How to avoid getting a trojan in Skype

Posted: November 16, 2012 in Articles
Tags: , , ,

Skype

Trojan in Skype

Many users have already experienced social trojan that spreads through Skype and social networks.

Short link created using goo.gl, users receive from their authorized contacts with the text “this is a new avatar of your profile?))” Or «ey eto vasha novaya kartina profil ‘?». If you click on it loaded ZIP-archive with malicious executable with the extension *. Exe – previously known worm Worm.NgrBot (or Dorkbot), including an infected computer in a botnet and involve it in DDoS-attacks, and able to steal passwords from sharing services, address, legal services and social networks, blocking access to websites of antivirus companies.

This type of virus is a rather nasty threat since spread from a” trusted “source, how users tend to view their contacts in Skype. This explains the high level of infection – even users who have several times explained the danger of such virus attacks can still get infected. – This is dangerous and a threat that spreads via removable media (flash drives), and are used not just autorun virus, hiding all of the folders on the disk and replacing them with labels, which is disclosed at the opening of the original folder, but also runs another instance virus program. Restoration of normal access to information on the removable drive requires cleaning attributes of files / folders and delete the virus created shortcuts.

In addition to the usual questions about the security of Skype and viral “social engineering”, this attack also confirms another argument about the danger of “short links”. These services are generally used in the “social” networks – where there are restrictions on the total amount of messages. But while such services have become popular among virus writers, because the short link, the user can not see where the link leads. It is a short link to download a malicious file and was in messages from infected computers.

How can you avoid this type of attack?

Experts recommend to install a modern antivirus program last generation. But even this may not be enough! Users need to know the basic principles of safety when working on the Internet:

– Do not open messages from unknown people who do not follow the links in these messages;

– Do not open any messages “short” links that can not see where the link is (reference types http://byt.ly/E5892 and the like);

– Before you open a link, check to see if the actual link that is displayed in the message. You can copy the link: You can right-click and select “Copy”, paste it into Notepad and verify compliance. If there is a mismatch (for example, instead http://www.bank.com be something like http://www.bank.com.cn) – this is most likely a viral link. Also, many of the programs show a real link, if you just put the cursor on it, without pressing buttons;

– Do not open links in emails on behalf of banks and payment systems, unless you know they are needed. If in doubt – please contact customer support to check whether the bank sent such messages;

– Finally, never run an executable file that is sent by mail or instant messaging, including Skype (files with the extension *. Exe).

Related Links:

https://malwarelist.wordpress.com/2012/11/14/vulnerability-in-skype/

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s