All the latest UK technology news, reviews and analysis

Fake MP3 attack hits 360,000 PCs

by Shaun Nichols

More from this author

07 May 2008

Comments: 2

  • Tweet this
MP3
A new social engineering attack delivers malware via fake MP3 files

Attackers are using fake MP3 files to launch one of the largest malware attacks in recent years, experts warned today.

The social engineering attacks purport to offer MP3 files or Mpeg movie files.

Further reading

On downloading and launching the file, the user is prompted to launch an executable called 'play_mp3.exe' which installs adware.

Instead of a movie or song, the user gets a pair of adware tools for the Firefox web browser. If the user does not have Firefox installed, an error message asks the user to install the software.

McAfee researcher Craig Schmugar explained that the fake files have been traced to the fastmp3player.com domain. McAfee has detected the attacks on more than 360,000 machines, including more than 120,000 in the past 24 hours.

"This is one of the most prevalent pieces of malware in the past three years, " he said. "We have never had a threat this significant that arrives as a media file."

The malware launches a multimedia tool which Schmugar described as "simply a browser control wrapped in an executable".

"In the end you are left with a fake MP3 file taking up space, a worthless MP3 player, and adware that displays popup and pop-under ads," he said.

Do you agree?

Add your comment

it is not who is clicking it is what

as Microsoft windows has always auto executed everything with admin rights!

Posted by: truthwriter 09 May 2008

Who are the idiots ?

It never ceases to amaze me. Who are the idiots out there who must obviously still be clicking on links in unsolicited emails, downloading attachments, and then executing/installing them ???? What kind of fool still does this ???

Posted by: Marty Weston 08 May 2008

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Google Android logo

Mobile security researchers warn of evolving Android malware

Related white papers

Related articles

Related jobs

Today's top stories

heartvalentinesday

Top 10 Valentine's Day technology matches made in heaven

Microsoft Windows 8 start screen

Microsoft talks up Windows 8 for ARM hardware

Security enhancements will be added with the Chrome 17 update

Chrome for Android hands on review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

97%

1%

1%

0%

1%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Technical Sales Executive (Testing)

Major Global Consultancy currently experiencing a period...

Contract Fixed Income Solutions Designer / Architect

Contract Solutions Designer / Solutions Architect - Investment...

IT Consultant - Financial Services - up to £50'000

IT Consultant - Financial Services - up to £50'000...

Reference Data Pre-Sales - London - £50'000 - £80'000

Reference Data Pre-Sales - London - £50'000 - £80'000...

To send to more than one email address, simply separate each address with a comma.