acm-header
Sign In

Communications of the ACM

Home/News/Newly Discovered Vigilante Malware Outs Software Pirates.../Full Text
ACM TechNews

Newly Discovered Vigilante Malware Outs Software Pirates, Blocks Them

By Ars Technica
June 22, 2021
Comments
View as: Print Mobile App Share:
Warning users of vigilantes.

A researcher has discovered malware containing booby-trapped files that rat out downloaders and try to prevent unauthorized downloads.

Credit: Getty Images

SophosLabs researcher Andrew Brandt has discovered malware that identifies and blocks software pirates.

The Vigilante malware is installed when victims download and execute what are believed to be pirated software or games.

The malware reports the executed file name and the IP address of the victims' computers to a server controlled by the attackers, and attempts to modify the computers to prevent them from accessing as many as 1,000 pirate sites.

Brandt said, "It's really unusual to see something like this because there's normally just one motive behind most malware: stealing stuff."

Some of the trojans were found in software packages available on a Discord-hosted chat service, while others were disguised as popular games, productivity tools, and security products available through BitTorrent.

To disinfect their computers, users will need to edit their Hosts file.

From Ars Technica
View Full Article

 

Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA

 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account