New worm thinly disguised as CNN breaking news headlines

January 21, 2005

Virus researchers at Sophos have identified a new worm which poses as information on the latest news stories. Crowt-A(W32/Crowt-A) takes its subject lines, message content and attachment names from headlines gathered in real-time from the CNN website. As well as providing keylogging and backdoor functionality, W32/Crowt-A attempts to send itself by email to addresses found on the infected computer as if from other addresses on the infected computer. The email's subject lines, message content and attachment name are generated from headlines gathered real-time from the CNN website.

Crowt-A's subject line and attachment share the same name, but continually change to mirror the front-page headline on the CNN news site. The message text is also lifted from CNN's site, duping the recipient into thinking that they are reading a bonafide newsletter rather than receiving an infected email.

Crowt-A also installs a backdoor Trojan function. This attempts to log keystrokes on infected PCs and sends gathered data to a remote user. These Trojans are often used by hackers to gain unauthorised control of PCs and to steal personal information such as bank passwords.

"Virus writers are always looking for new tricks to entice innocent computer users into running their malicious code; this latest ploy feeds on people's desire for the latest news," said Carole Theriault, security consultant at Sophos. "Many people subscribe to legitimate email news updates, but the message is simple - businesses need to makes sure their anti-virus detection is constantly updated and users need to be suspicious of all unsolicited email whether it's promising celebrity pictures or news updates."

Although only a small number of instances of the worm have been sighted so far, Sophos recommends companies protect their computers with a consolidated solution to thwart the virus and spam threats as well as secure their desktop and servers with automatically updated anti-virus protection.

Explore further: Russian hackers hunted journalists in years-long campaign

Related Stories

Flipboard buys rival news reader Zite from CNN

March 5, 2014

Flipboard on Wednesday announced it is buying rival online news reader Zite from cable news stalwart CNN, boldly declaring a bid to become "the world's best personal magazine."

Is Twitter the news outlet for the 21st century?

July 1, 2009

(AP) -- Cassy Hayes and Jasmine Coleman were among the first fans to arrive outside the Ronald Reagan UCLA Medical Center in Los Angeles where Michael Jackson was brought and later pronounced dead.

Recommended for you

Cells lacking nuclei struggle to move in 3-D environments

January 20, 2018

University of North Carolina Lineberger Comprehensive Cancer Center researchers have revealed new details of how the physical properties of the nucleus influence how cells can move around different environments - such as ...

Information engine operates with nearly perfect efficiency

January 19, 2018

Physicists have experimentally demonstrated an information engine—a device that converts information into work—with an efficiency that exceeds the conventional second law of thermodynamics. Instead, the engine's efficiency ...

Team takes a deep look at memristors

January 19, 2018

In the race to build a computer that mimics the massive computational power of the human brain, researchers are increasingly turning to memristors, which can vary their electrical resistance based on the memory of past activity. ...

Fast computer control for molecular machines

January 19, 2018

Scientists at the Technical University of Munich (TUM) have developed a novel electric propulsion technology for nanorobots. It allows molecular machines to move a hundred thousand times faster than with the biochemical processes ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.