NOW READ THIS
("Security Advisory")
Submitted by: Bill Hickey
NCVA List Master
NRT-0310 New Trojan Imitates SKYPE Installer:
Security analysts are warning of another malicious software program masquerading as an installer
file for SKYPE. The program sends the victim's SKYPE credentials and any other logins or
passwords stored in Internet Explorer to a server. This Trojan horse appears as an installer
with SKYPE's logo and the name 65404-SkypeDefenderSetup.exe." Once the program is executed, users
see a convincing SKYPE login interface, although the graphic for the "sign-in" button is
different from that of the genuine SKYPE application. Login credentials can be entered, but none
of the other menu functions work. The Trojan has been spread through spam as well as through
instant-message conversations with a link to the malware. "This piece of malware does not
propagate itself," a SKYPE spokesman said. "Luckily, because the malware depends on the "human
factor" to propagate, it is not widely spread. And we've received only a few complaints in
customer support."
(www.infoworld.com 17OCT07)