Image-stealing malware might lead to blackmailing attempts
Posted on 05.11.2012
Information-stealing malware targeting random computer users is usually geared towards stealing passwords and financial information by logging pressed keys and taking screenshots.

But every now and then there "specialized" malware pops up, like the one recently detected by Trend Micro researchers.

Dubbed "PixSteal", this particular Trojan opens a hidden command line and copies all JPG, JPEG, and DMP files it can find on drives C, D, and E of the affected system to the C drive. From there, it sends the copies to a remote FTP server.

"Information theft routines have been mostly limited to information that are in text form, thus this malware poses a whole new different risk for users," Trend Micro warns.

"Users typically rely on photos for storing information, both personal and work-related, so the risk of information leakage is very high. Collected photos can be used for identity theft, blackmail, or can even be used in future targeted attacks."

Unfortunately, the researchers don't say what infection vector is used by the criminals behind this Trojan, but you can be sure that keeping your software updated and not opening attachments or following links from unsolicited emails and messages is a good idea.


Over 225,000 Apple accounts compromised via iOS malware

Researchers from Palo Alto Networks and WeipTech have unearthed a scheme that resulted in the largest known Apple account theft caused by malware. All in all, some 225,000 valid Apple accounts have been compromised.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Tue, Sep 1st