All the latest UK technology news, reviews and analysis


Researchers warn of image-stealing malware

07 Nov 2012
malware virus security threat

Researchers are warning users following the discovery of a malware infection designed to collect and upload image files to a remote server.

The malware, dubbed PixSteal-A by Sophos researchers, infects Windows PCs and then runs a search for all jpeg and dmp file types. The infected systems then establish a connection to a remote server via FTP and then upload the collected files.

While researchers report that the collection server is hosted in Iraq, the location of the individual controlling the operation is unknown and could be anywhere on the globe.

The aim of the operation is currently unknown and researchers are not yet sure how the attacker plans to use the pilfered images.

Chester Wisniewski, a senior security adviser at Sophos had a simple recommendation to users and administrators looking to prevent their image files from being compromised by the malware: simply disable FTP connections at the firewall level.

Wisniewski noted that because FTP does not use encryption measures when transmitting data, the protocol is outdated and leaves users at risk for attacks such as password and credential theft.

"While that might seem extreme, I suggest to you that you shouldn't allow FTP access to begin with," Wisniewski advised users in a post to the Sophos Naked Security blog.

"FTP should have died a long time ago and you can help. Just refuse to use it."

Though the emergence of sophisticated, targeted attacks has dominated headlines recently, malware growth across all levels and sectors is soaring.

While mobile devices such as Android handsets have grown in popularity with malware writers, Windows PCs remain by far the most heavily targeted systems.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 7 end of mainstream support

What are your plans for when Microsoft ends mainstream support for Windows 7 in January 2015?
8%
9%
0%
69%
14%

Popular Threads

Powered by Disqus
LG G3 in gold black and white

LG G3 vs Galaxy S5 video

We pit the two Korean firms' flagship smartphones against each other

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Technical Director, Mobile Games

This established, successful independent Games Studio...

IT Service Desk Analyst

IT Service Desk Analyst This is an excellent opportunity...

IT Local Support Analyst

This is an excellent opportunity to work in an exciting...

Information Security Manager (ISO 27001, Accreditation, ITIL)

Information Security Manager (ISO 27001, Accreditation...
To send to more than one email address, simply separate each address with a comma.