Thursday October 4, 2007
Hackers exploiting Myanmar crisis
KUALA LUMPUR: Computer users should be wary if they receive e-mail with links to the Dalai Lama's website because one such e-mail going around comes with a malicious attachment, said security solutions vendor Sophos.
The e-mail claims to be a message of support for monks and other protesters in Myanmar, from the Dalai Lama. But the attached document, if opened, will attempt to exploit a Microsoft Wordvulnerability to download a trojan program onto the victim's computer.
Sophos said the e-mail attachment bears the filename " hhdl burma_001.doc." This trojan opens a "backdoor" in infected computers to let the hacker control the computer remotely.
The hacker can then steal passwords and other important personal information, such as bank account numbers, residing on the computer whenever the machine is connected to the Internet.
"People around the world are hungry to hear about the latest situation in Myanmar and may be tempted to read this so-called message from the Dalai Lama," said Graham Cluley, senior technology consultant at Sophos, in a press release.
Anyone receiving the e-mail should delete it immediately without reading the attached message, he added. Computer users are reminded that they should also have an antivirus program running on their machines and to download the very latest virus definitions. For more details, go to www.sophos.com/security/blog/2007/09/606.html.
RSS
