Worm Spreading via Skype Chat?

Password-stealing Trojan horse may--or may not--be targeting popular VoIP feature.

Computer security analysts are studying reports of a worm that may be circulating via a feature in Skype's popular Voice over IP service.

Security vendor Websense said the worm spreads through Skype's chat feature. Users receive a message asking them to download a file called "sp.exe." The executable is a Trojan horse that can steal passwords. If a user runs the Trojan it triggers another set of code to spread itself.

The first infected PCs appeared in the Asia-Pacific region, particularly in Korea, Websense reported on its blog today. It said it was still investigating the issue.

F-Secure Disagrees, SANS not Sure

Not all security experts were in agreement, however. F-Secure received a sample of the worm and determined that it did not, in fact, target Skype, said Mikko Hypponen, chief research officer. "What's clear is, there's no massive worm outbreak with Skype at the moment," Hypponen said. "We are following the situation."

The SANS Internet Storm Center said it was "hearing some details of a new worm spreading via Skype IM" and asked for more information in a posting on its site.

Websense said the executable appears to be encrypted with NTKrnl Secure Suite Packer, a polymorphic encryption program that makes files look unique to different detection engines. The original site that hosted the code is no longer serving it, Websense said.

Would you recommend this story? YES NO

Recommend:
0 Comments
Print

Comments

Speed Up Everything!

PCWorld shows you the secrets to improve performance on all your hardware.

Get the Superguide now!

PCWorld on your iPad!

PCWorldDaily gives you the best from our experts each day.

Download from the App Store - Free!

Lenovo Laptop Deals

IdeaPad U300s If there's a laptop that deserves the moniker "Ultrabook" it's the Lenovo IdeaPad U300s.
Buy now direct from Lenovo
ThinkPad X220 Fast and light, with great input ergonomics and battery life, this powerhouse ultraportable is best-of-breed.
Buy now direct from Lenovo
ThinkPad T420 Just about every IT person we know swears by the T series--for their clients and themselves.
Buy now direct from Lenovo

Best Prices on Antivirus Software

Endpoint Protection v.12.0 Small Business Edition (Full Product, 10 Users) $119.58 and up See All Prices
Norton Antivirus 2012 (Full Product, 3 PCs) $21.00 and up See All Prices
Total Protection 2012 (Full Product, 3 Users) $21.99 and up See All Prices
Antivirus with Spy Sweeper $16.00 and up See All Prices

See all Best Prices on Antivirus Software »

See also: Best Prices on Security Software, Firewalls

12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.

Subscribe to the Security & Privacy Newsletter - weekly

See All Newsletters »

Today's Special Offers

Editors' Picks

Name	City

Address 1	State	Zip

Address 2	E-mail (optional)