All the latest UK technology news, reviews and analysis

Fake MP3 attack hits 360,000 PCs

by Shaun Nichols

07 May 2008

Comments: 2

  • Tweet this
MP3
A new social engineering attack delivers malware via fake MP3 files

Attackers are using fake MP3 files to launch one of the largest malware attacks in recent years, experts warned today.

The social engineering attacks purport to offer MP3 files or Mpeg movie files.

Further reading

On downloading and launching the file, the user is prompted to launch an executable called 'play_mp3.exe' which installs adware.

Instead of a movie or song, the user gets a pair of adware tools for the Firefox web browser. If the user does not have Firefox installed, an error message asks the user to install the software.

McAfee researcher Craig Schmugar explained that the fake files have been traced to the fastmp3player.com domain. McAfee has detected the attacks on more than 360,000 machines, including more than 120,000 in the past 24 hours.

"This is one of the most prevalent pieces of malware in the past three years, " he said. "We have never had a threat this significant that arrives as a media file."

The malware launches a multimedia tool which Schmugar described as "simply a browser control wrapped in an executable".

"In the end you are left with a fake MP3 file taking up space, a worthless MP3 player, and adware that displays popup and pop-under ads," he said.

Do you agree?

Add your comment

it is not who is clicking it is what

as Microsoft windows has always auto executed everything with admin rights!

Posted by: truthwriter 09 May 2008

Who are the idiots ?

It never ceases to amaze me. Who are the idiots out there who must obviously still be clicking on links in unsolicited emails, downloading attachments, and then executing/installing them ???? What kind of fool still does this ???

Posted by: Marty Weston 08 May 2008

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Google Logo

Google sees ad bans top 134 million

Related white papers

Related articles

Related jobs

Today's top stories

Google Android Malware

Top 10 Android mobile security apps

Phil Pavitt is chief information officer at HMRC

Government IT chief slams Apple security as 'appalling'

V3's Madeline Bennett

HP's loss of Autonomy founder Mike Lynch could be UK tech sector's gain

Poll

The workplace of the future poll - in association with IBM

What will be the biggest change to corporate technology in the future?

89%

6%

1%

3%

1%

Features

cookies

Quick guide to cookie law compliance

cookie

ICO sends out mixed messages on cookie law

V3's Madeline Bennett

HP's loss of Autonomy founder Mike Lynch could be UK tech sector's gain

An EMC logo

EMC World: Big data evolves into data science

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Riso

Colour printing: why the bill keeps outstripping the budget

The wrong printers, for the wrong tasks on the wrong contracts

Qlikview

Magic quadrant for business intelligence platforms

Who leads the BI pack and who should we be watching out for?

Technology jobs

Head of Compliance

Head of Compliance My client is currently seeking...

Financial Reporting

THis role is working for a multi national Financial organisation...

Professional Services Consultant - Data Protection, Backup - £105k+

Professional Services Consultant - Data Protection, Backup...

Web Support Analyst (Drupal, Joomla or Wordpress, CMS, HTML)

Web Support Analyst (Drupal, Joomla or Wordpress, CMS...

Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.

More white papers
To send to more than one email address, simply separate each address with a comma.