XP's Help and Support system has come under attack from hackers, seemingly from the use of Remote support.
Currently the exploit allows certain virus's and trojans to enter the system, currently those known are;
Trojan:Win32/Swrort.A
TrojanDownloader:Win32/Obitel.gen!A
Spammer:Win32/Tedroo.AB
Trojan:Win32/Oficla.M
TrojanSpy:Win32/Neetro.A
Virus:JS/Decdec.A
ProtectionIn addition to the mitigations listed in the advisory, customers using Microsoft Security Essentials, Microsoft Forefront Client Security, Windows Live OneCare, the Forefront Threat Management Gateway, and the Windows Live Safety Platform have had coverage for this exploit since June 10th through the following two antimalware signatures:
Exploit:Win32/CVE-2010-1885.A
Exploit:Win32/CVE-2010-1885.gen
Signature builds 1.83.1561 and later contain both signatures.
Payloads are detected by the signatures mentioned above.
The above in italics is a quote directly from Microsoft Malware Protection Center, Threat Research & Response Blog
Hope none of you out there get caught out by this.
All the best
Dan
No comments:
Post a Comment