Avira and Virus News - Virus & AntiVirus News

Grand Jury Indicts Three for Hack Attacks

nancy@compsecglobal.com (Nancy Pursley) — Tue, 18 Aug 2009 09:58:58 -0500

Sharon Gaudin, Computerworld

A Miami, Fla., man and two Russians today were indicted by a grand jury in New Jersey on charges of conspiring to commit some of the largest data breaches in U.S. history.

Albert Gonzalez, 28, and the two as-of-yet-unnamed Russian citizens are charged with running an international scheme to steal more than 130 million credit and debit card numbers along with personal identifying information from five companies, including Heartland Payment Systems, Inc., 7-Eleven, Inc. and Hannaford Brothers Co. The two other companies were not named in the indictment because their breaches have not yet been made public.

"This represents another major step forward in our efforts to prosecute individuals responsible for these major data breaches," said Assistant U.S. Attorney Erez Liebermann, who is prosecuting the case with Assistant U.S. Attorney Seth Kosto. "It also further illustrates the ability of the U.S. to work with foreign law enforcement in these international cases and track down people even when they use sophisticated means."

The data breach at Heartland, which is based in Princeton, N.J., is considered to be one of the largest data breaches involving credit cards ever reported in the U.S. Heartland said earlier this year that it has already spent or set aside more than $12.6 million to cover costs related to the intrusion there.

The data breach at Hannaford resulted in the reported theft of up to 4.2 million credit and debit card numbers from its systems.

Continue reading "Grand Jury Indicts Three for Hack Attacks"

Hackers Put Social Networks Such as Twitter in Crosshairs

nancy@compsecglobal.com (Nancy Pursley) — Mon, 17 Aug 2009 11:40:36 -0500

By Jeremy Kirk, IDG News Service

Web sites such as Twitter are becoming increasingly favored by hackers as places to plant malicious software in order to infect computers, according to a new study covering Web application security vulnerabilities.

Social-networking sites were the most commonly targeted vertical market according to a study of hacking episodes in the first half of the year. The study is part of the latest Web Hacking Incidents Database (WHID) report, released on Monday. In 2008, government and law enforcement sites were the most-hit vertical markets.

Social networks are "a target-rich environment if you count the number of users there," said Ryan Barnett, director of application security research for Breach Security, one of the report's sponsors, which also includes the Web Application Security Consortium.

Twitter has been attacked by several worms, and other social-networking platforms such as MySpace and Facebook have also been used to distribute malware. That's often done when an infected computer begins posting links on social-networking sites to other Web sites rigged with malicious software. Users click on the links since they trust their friends who posted the links, not knowing their friend has been hacked.

The WHID sample set is small, encompassing 44 hacking incidents. The report only looks at attacks that are publicly reported and those with which have a measurable impact on an organization. The WHID's data set is "statistically insignificant" compared to the actually number of hacking incidents, but shows overall attacker trends, Barnett said.

Other data showed how Web sites were attacked. The most common attack was SQL injection, where hackers try to input code into Web-based forms or URLs (Uniform Resource Locators) in order to get back-end systems such as databases to execute it. If the input is not properly validated -- and malicious code ignored -- it can result in a data breach.

Other methods used include cross-site scripting attacks, where malicious code gets push to on a client machine, and cross-site request forgery, in which a malicious command is executed while the victim is logged into a Web site.

The WHID found that defacing Web sites is still the most common motivation for hackers. However, the WHID includes the planting of malware on a Web site as defacement, which also points to a financial motivation. Hacked computers can be used to send spam, conduct distributed denial-of-service attacks and for stealing data.

"Ultimately they [the hackers] want to make money," Barnett said.

Our Comment: Be careful what you click on especially on these social networking sites.

Original Article

Australian charged with infecting 3,000 computers

nancy@compsecglobal.com (Nancy Pursley) — Thu, 13 Aug 2009 10:38:38 -0500

ADELAIDE, Australia -

A 20-year-old Australian man has been charged with infecting more than 3,000 computers around the world with a virus designed to capture banking and credit card data, police said Thursday.

The man, whose name will not be released until he appears in an Adelaide court on Sept. 4, has been charged with several computer offenses that carry prison terms of up to 10 years, South Australia state police Detective Supt. Jim Jeffery said in a statement.

Police also uncovered information that will identify other offenders, Jeffery said.

The man, who lives in the state capital, Adelaide, is also accused of illegally creating a capacity to disable computer systems by bombarding them with unwanted traffic from up to 74,000 computers he controlled around the world. This type of sabotage is known as a distributed denial of service attack.

Police have not said whether the man allegedly used stolen banking information to commit identity fraud.

The arrest followed a three-month investigation involving state and federal computer crime detectives.

Our Comment: One down, thousands to go.

Original Article

Cyber Attackers Empty Business Accounts in Minutes

nancy@compsecglobal.com (Nancy Pursley) — Fri, 07 Aug 2009 09:48:24 -0500

By Robert McMillan, IDG News Service

The criminals knew what they were doing when they hit the Western Beaver County School District.

They waited until school administrators were away on holiday, and then during a four-day period between Dec. 29 and Jan. 2, siphoned US$704,610.35 out of two of the school district's bank accounts. Western Beaver's financial institution, ESB Bank, managed to reverse some of the transfers, but the Pennsylvania school district was out more than $441,000.

On July 9, Western Beaver sued ESB to try and recover the money, but security experts say that it's just one of many organizations that have been hit in recent months by a disturbing new type of financial fraud that can often leave the victim holding the bag.

Fraudsters are taking advantage of the widely used but obscure Automated Clearing House (ACH) Network in order to pull off their attacks. This financial network is used by financial institutions to handle direct deposits, checks, bill payments and cash transfers between businesses and individuals.

In April, ACH fraudsters moved $1.2 million out of a Sugar Land, Texas, importer called Unique Industrial Products, according to a report in the Houston Chronicle. They did this by hacking into the company's computers and then authorizing 39 transfers to move the money out of Unique Industrial's account. Although the bulk of the money was recovered, scammers made $150,000 from the attack -- not bad for 30 minutes of work.

"ACH fraud continues to grow, especially in this current economic downturn where unemployment is at very high levels," said Jeffery Dertz, a partner in the insurance practice group with Blackman Kallick, a Chicago-based accounting and consulting firm.

Criminals can make millions of dollars per day with ACH fraud, investigators say. And while consumers are protected from this type of fraud, the rules for corporations and organizations are not as clear-cut, so sometimes victims like Western Beaver find themselves having to pay.

Continue reading "Cyber Attackers Empty Business Accounts in Minutes "

White House Still Seeking Cybersecurity Czar

nancy@compsecglobal.com (Nancy Pursley) — Thu, 06 Aug 2009 09:42:00 -0500

By Reuters

WASHINGTON - President Barack Obama is still searching for the right person to lead the fight against an epidemic of cybercrime, the White House said on Tuesday as it came under fire following the resignation of a top cybersecurity adviser.

Melissa Hathaway, who led a 60-day White House review of cyber policies, resigned and said she had withdrawn her application for the position of cybersecurity coordinator out of frustration over the administration's delays in filling the post.

"I wasn't willing to continue to wait any longer because I'm not empowered right now to continue to drive the change," Hathaway, who also worked on cybersecurity issues for the Bush administration, told The Washington Post.

Obama promised in May that he would personally decide who would become cybersecurity coordinator to lead the fight against an epidemic of cybercrime, which threatens the computer networks that underpin the U.S. economy.

Industry officials have pushed for someone to be appointed to the job. Republican Senator Susan Collins, who has worked closely with the Democratic president on many issues, blasted Hathaway's departure as a sign of the Obama administration's lack of leadership in cybersecurity.

"The loss of her expertise on this issue is unfortunate," Collins, the ranking Republican on the Senate homeland security committee, said in a statement.

She said the White House should not appoint a cybersecurity czar but should work with Congress to appoint a "cyber leader" at the Department of Homeland Security.

Continue reading "White House Still Seeking Cybersecurity Czar"

After Links to Cybercrime, Latvian ISP Is Cut off

nancy@compsecglobal.com (Nancy Pursley) — Wed, 05 Aug 2009 10:44:17 -0500

By Robert McMillan, IDG News Service

A Latvian ISP linked to online criminal activity has been cut off from the Internet, following complaints from Internet security researchers.

Real Host, based in Riga, Latvia was thought to control command-and-control servers for infected botnet PCs, and had been linked to phishing sites, Web sites that launched attack code at visitors and were also home to malicious "rogue" antivirus products, according to a researcher using the pseudonym Jart Armin, who works on the Hostexploit.com Web site. "This is maybe one of the top European centers of crap," he said in an e-mail interview.

"It was a cesspool of criminal activity," said Paul Ferguson a researcher with Trend Micro.

The ISP was disconnected from the Internet by its upstream provider, Junik, on Monday, after its provider, TeliaSonera told it to stop servicing Real Host or face sanctions Armin said.

Real Host was considered a "bullet proof" hosting provider, that would allow customers to remain online even after they had been linked to malicious activity. It had been linked to the Zeus botnet-making software.

This isn't the first time this type of hosting provider has been knocked offline. In the past year, at least three U.S. ISPs: Atrivo, McColo and 3FN have been unplugged after security researchers built cases against them. Atrivo and McColo were also taken offline by their upstream providers. 3FN was shut down by the U.S. Federal Trade Commission.
Continue reading "After Links to Cybercrime, Latvian ISP Is Cut off "

Hackers expose weakness in visiting trusted sites

nancy@compsecglobal.com (Nancy Pursley) — Tue, 04 Aug 2009 09:34:49 -0500

By JORDAN ROBERTSON, AP Technology Writer

LAS VEGAS -

A powerful new type of Internet attack works like a telephone tap, except operates between computers and Web sites they trust.

Hackers at the Black Hat and DefCon security conferences have revealed a serious flaw in the way Web browsers weed out untrustworthy sites and block anybody from seeing them. If a criminal infiltrates a network, he can set up a secret eavesdropping post and capture credit card numbers, passwords and other sensitive data flowing between computers on that network and sites their browsers have deemed safe.

In an even more nefarious plot, an attacker could hijack the auto-update feature on a victim's computer, and trick it into automatically installing malware pulled in from a hacker's Web site. The computer would think it's an update coming from the software manufacturer.

The attack was demonstrated by three hackers. Independent security researcher Moxie Marlinspike presented alone, while Dan Kaminsky, with Seattle-based security consultancy IOActive Inc., and security and privacy researcher Len Sassaman presented together.

They reached essentially the same conclusion: There are major problems in the way browsers interact with Secure Sockets Layer (SSL) certificates, which is a common technology used on banking, e-commerce and other sites handling sensitive data.

Browser makers and the companies that sell SSL certificates are working on a fix.

Microsoft Corp., whose Internet Explorer browser is the world's most popular, said it was investigating the issue. Mozilla Corp., which makes the No. 2 Firefox browser, said most of the problems being addressed were fixed in the latest version of its browser, and that the rest will be fixed in an update coming this week.

VeriSign Inc., one of the biggest SSL certificate companies, maintains that its certificates aren't vulnerable.

Tim Callan, a product marketing executive in VeriSign's SSL business unit, added that the "tap" won't work against so-called Extended Validation SSL certificates, which cost more and involve a deeper inspection of a company's application for a certificate.

The attack falls into a class of hacks known as "man-in-the-middle," in which a criminal plants himself between a victim's computer and a legitimate Web site and steals data as it moves back and forth.

Jeff Moss, founder of the Black Hat and Defcon conferences who this summer was appointed to the Homeland Security Department's advisory council, said the fact a hacker has to actually break into a victim's network for the attack to work can limit its usefulness.

"That's the nice mitigating thing," he said.

But he warned that "for targeted attacks it's absolutely deadly. This is the way you can get everything. If you can get in the middle, you can get everything. It's a big, giant wake-up call for the industry."

SSL certificates are a critical technology in assigning trust on the Web.
Continue reading "Hackers expose weakness in visiting trusted sites "

Security Analyst: Las Vegas ATMs May Have Malware

nancy@compsecglobal.com (Nancy Pursley) — Mon, 03 Aug 2009 11:47:06 -0500

Jeremy Kirk, IDG News Service

The U.S. Secret Service said on Monday it is investigating a group of ATM machines in Las Vegas that are debiting people's accounts but not dispensing cash.

The case came to light after Defcon hacker conference presenter Chris Paget tried to withdraw $200 on Sunday from his account at the Rio All-Suite Hotel and Casino. He wanted buy a metallic copy of the Bill of Rights, a joke gift designed to set off airport metal detectors from the magicians Penn and Teller.

The ATM "whirred and chugged," Paget said, "but no money came out." His account, however, was debited.

He wasn't the only one. Paget spoke with an Israeli man who had tried to withdraw $1,000, as well as a woman who tried to take out $400. At least a half dozen people experienced the same problem at various machines in the hotel, Paget said.

Paget, who has expertise in credit-card security and runs a hardware security consulting company, notified the hotel staff, who didn't take action to shut down the machines.

"The best they would do was put a sign on the ATM saying 'Out of order,'" Paget said. "We were standing by the ATMs warning people."

Paget considered unplugging the machines, but the hotel's security told him he would potentially be prosecuted for vandalism.

Paget's experience points to the increasing frequency with which criminals are targeting ATMs. One scam is to attach a device to the ATM known as a skimmer that can record details stored on a card's magnetic stripe. A person's PIN (Personal Identification Number) can be captured with an overlay on the keypad or a video camera. Then, the card can be cloned.

Security experts have also seen samples of malicious software designed for ATMs that can record card details. Earlier this year, analysts at Trustwave's SpiderLabs research group said the malware came from a financial institution that had been affected in Eastern Europe.

In Paget's case, a Rio hotel representative said on Monday that she was unaware of the problem and advised calling the hotel's accounting office later. A Secret Service officer in the Las Vegas area confirmed the agency was looking into the issue along with the Las Vegas Metropolitan Police Department. Paget said he left a voicemail with the Federal Bureau of Investigation.

Continue reading "Security Analyst: Las Vegas ATMs May Have Malware"

Meter Hackers Find Free Parking in San Francisco

nancy@compsecglobal.com (Nancy Pursley) — Fri, 31 Jul 2009 10:29:08 -0500

Robert McMillan, IDG News Service

San Francisco's ambitious plans to roll out computerized smart parking meters have hit a snag: They can be hacked for free parking.

Security researchers say that it is easy for a technically savvy hacker to make a fake payment card that gives them unlimited free parking. To prove their point, they will talk about how they built just such a card in about three days at a computer security conference Thursday.

According to Joe Grand, owner of Grand Idea Studio, San Francisco's parking meters have no way of telling the difference between a genuine payment card and a fake. These cards can be used to pay 23,000 meters citywide.

Grand, who hadn't worked much with smart cards, said that the work wasn't particularly hard to do. His card simply replays the same signals used by genuine cards to the meter. Although he never actually used the card to get free parking, Grand said he was able to build a card with a balance of US$999.99 -- the maximum possible -- that would never run out of funds.

"If I found this problem, chances are somebody else knows about the problem and possibly is exploiting it," he said. "That's costing all of us taxpayers money."

To figure out how the payment system worked, Grand hooked up an oscilloscope to a parking meter and monitored what happened when he used a genuine payment card. He then analyzed that data by hand, and wrote a software program that would emulate the smart card. After some trial and error, he finally figured out what his program needed to say to the meter in order to work. Then he built a card that would replay the same data, using a programmable smart card called a Silver Card.

San Francisco uses McKay Guardian XLE meters, Grand said, but because these meters are implemented differently in different cities, his technique may not work outside of San Francisco.

Cities across the U.S. are rolling out computerized parking meter systems designed to be easier to pay and manage. San Francisco's smart meters were rolled out as part of a broader program, known as SFpark, which will eventually deploy parking sensors that can detect when a space is empty and transmit that information wirelessly to drivers looking for spots.

But there have been some problems. In May, about 125 smart meters in Chicago stopped working properly, prompting speculation that the machines may have been hacked.

Continue reading "Meter Hackers Find Free Parking in San Francisco"

Microsoft releases security patch for Web browser

nancy@compsecglobal.com (Nancy Pursley) — Wed, 29 Jul 2009 11:19:26 -0500

WASHINGTON (AFP) â Microsoft released a security patch on Tuesday aimed at preventing hackers from exploiting a vulnerability in its Web browser, Internet Explorer.

The US software giant said that the security update would be automatically installed for Internet Explorer users who have automatic updating enabled on their computers but would need to be installed manually by other users.

It said the update resolves three privately reported vulnerabilities in Internet Explorer.

"These vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer," Microsoft said.

It said the security patch "addresses these vulnerabilities by modifying the way that Internet Explorer handles objects in memory and table operations."

Microsoft said an attacker could exploit the vulnerability by constructing a specially crafted Web page.

"When a user views the Web page, the vulnerability could allow remote code execution," it said. "An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user."

"If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system," it said.

Microsoft said the security update was considered "critical" for users of certain versions of Internet Explorer running on Windows 2000 and Windows XP operating systems.

Our Comment: Make sure you update on a regular basis and get these patches quickly.

Original Article:

Malware Expected to Set Records This Year

nancy@compsecglobal.com (Nancy Pursley) — Tue, 28 Jul 2009 09:39:38 -0500

Security firm McAfee has identified more than 1.2 million different types of malware in the first half of 2009.

McAfee said that this is over double the 500,000 unqiue pieces of malware it identified in the same period in 2008. In total, the security firm identified 1.5 milliion types of malware in 2008, and it expects the 2009 figure to top this.

"In the first half of 2009, we have seen about three times the unique malware discovered in the same period in 2008," said Dave Marcus, director of security research and communications at McAfee.

"This tremendous growth is a signal of daunting times for users, as malware infiltrates more and more of the platforms we trust."

McAfee also revealed that around 40 percent of all password-stealing Trojans can be found on websites connected to gaming and virtual worlds, while 80 percent of all banking e-mail recieved by Web users are phishing scams.

McAfee also said on average victim's of phishing scams lose Â£520 per scam.

Our Advice: Don't let your ESET NOD32 or Smart Security lapse. We can do a renewal 60 days before the expiration date but we always extend the new expiration date so you don't loose any time. Don't be caught without protection.

Original Article

Teamwork crucial to fighting cyber crime: Microsoft

nancy@compsecglobal.com (Nancy Pursley) — Mon, 27 Jul 2009 11:37:31 -0500

SAN FRANCISCO (AFP) â Longtime computer security rivals are joining forces to battle increasingly sophisticated online attacks by cyber criminals.

"The attacks are getting more complex, and if we want to get ahead of attackers the call is to work together in a community approach," said Microsoft Security Response Center director Mike Reavey.

"One of the things becoming clear is that customers want vendors to work together, and they want information and protection out faster."

Microsoft used a premier Black Hat security conference taking place this week in Las Vegas as a stage to unveil enhancements to the software giant's computer defense collaboration efforts.

Microsoft released a new tool designed to make it easier for software security firms to model hacker threats and craft defenses.

The Redmond, Washington-based technology firm also unveiled a guidebook to de-mystify the realm of software security updates and vulnerability patches.

"There is a sea of information out there and we want to help customers navigate those waters," Reavey told AFP. "The guide walks them through what we do."

A Microsoft Active Protections Program launched at Black Hat last year has grown to 47 members that share information to minimize time hackers have to craft and launch attacks on newly discovered software weaknesses, Reavey said.

"By working together, the security vendors get free vulnerability information, Microsoft knows their products will be protected from widespread exploitation when the disclosure goes out, and customers win by remaining protected," TippingPoint security researcher Jason Avery said in a release.

"Everyone wins."

Microsoft provides computer security allies with an "exploitability index" that gauges the likelihood hackers will target various vulnerabilities to help security firms prioritize responses.

Microsoft also shares lessons learned while analyzing software for flaws.

"What we are seeing is they are working well with us and we are working well together," Reavey said of allies in the software security world.

Security industry teamwork was crucial in countering a Conficker virus that plagued the Internet early this year.

Continue reading "Teamwork crucial to fighting cyber crime: Microsoft"

Hacker Group L0pht Makes a Comeback, of Sorts

nancy@compsecglobal.com (Nancy Pursley) — Sat, 25 Jul 2009 12:07:00 -0500

By Robert McMillan, IDG News Service

The news report begins with shots of a tense space shuttle launch. Engineers hunch over computer banks and techno music pounds in the background. There is a countdown, a lift-off, and then you see a young man in a black T-shirt and sunglasses, apparently reporting from space.

This is the Hacker News Network, and after a decade offline it is lifting off again, this time with a quirky brand of video reports about security.

Hacker News Network is one of the side projects of the Boston-based hacker collective known as L0pht Heavy Industries. They're the guys who famously told the U.S. Congress that they could take down the Internet in about 30 minutes, and who helped invent the way that security bugs are reported to computer companies.

The L0pht's eight members were hacker gods back in the '90s, but most of them have faded from the limelight, even as they've watched a cottage industry of security research firms sprout up based on many of the disclosure techniques they pioneered. The L0pht disbanded after it sold out to consultancy @stake in 2000, and its members gradually watched their dream of being paid to do cutting-edge hacking and security research wither and die.

But over the past few months, the L0pht has been getting back together, kind of.

Six of the eight members reunited last year at a Boston security conference, and in May 2009, members of the group released the first update to their L0phtCrack password audit tool since 2005. They say it took a few years of negotiations with Symantec -- which bought @stake in 2004 -- to get back control of L0phtCrack and several other L0pht properties.

Last month the L0pht Web site went back online, and the demo version of Hacker News Network is set for an official launch on Jan. 11, 2010. (Chosen because the date 01-11-10 works as a binary number.)

The L0pht Web site will give members a single place to link to their current projects. Peiter Zatko, aka Mudge, says he'd like to use it as an archive of the group's historic security advisories.

More projects may evolve. The group acquired the rights to its AntiSniff network monitoring tool from Symantec and is toying with the idea of reviving that as well.

"We're still trying to figure out what the ultimate goals are," said Joe Grand, aka Kingpin. "But I'm just happy that we can be in touch on a personal level and not have to deal with business, not have to deal with politics, and just have a place to do stuff."

Business and company politics pretty much killed the L0pht, according to some members. The core members sold their business to @stake in the hopes that with a deep-pocketed corporate sponsor, they would be free to do hacking projects that really interested them, such as drawing attention to important security problems that were being ignored by software vendors.

Mudge describes the L0pht's early security advisories as "very much a Rachel Carson-meets-Consumer Reports sort of attempt." (Carson was a biologist who advanced the environmentalist movement in the '60s.) Initially, the group tried to apply that neutral Consumer Reports model to its @stake work, refusing to take money or free products from vendors. "It drove the venture capitalists nuts because we'd be turning down the money," he said.

Continue reading "Hacker Group L0pht Makes a Comeback, of Sorts "

Hacking Oracle's database will soon get easier

nancy@compsecglobal.com (Nancy Pursley) — Fri, 24 Jul 2009 09:53:27 -0500

By Jim Finkle

BOSTON (Reuters) - Hackers will soon gain a powerful new tool for breaking into Oracle Corp's database, the top-selling business software used by companies to store electronic information.

Security experts have developed an easy-to-use, automated software tool that can remotely break into Oracle databases over the Internet to simulate attacks on computer systems, but cybercrooks can use it for hacking.

The tool's authors created it through a controversial open-source software project known as Metasploit, which releases its free software over the Web.

Chris Gates, a security tester who co-developed the Metasploit tool, will unveil it next week at the annual Black Hat conference in Las Vegas, where thousands of security experts and hackers will gather to exchange trade secrets.

"Anyone with no skill and knowledge can download and run it," said Pete Finnigan, an independent consultant who specializes in Oracle security and who advises large corporations and government agencies.

He has not yet studied the Oracle tool but is familiar with other Metasploit software and said it works by automating many of the complicated procedures required to hack into Oracle databases, allowing amateurs to hack into them.

Oracle, which declined to comment, has already issued patches to protect against vulnerabilities that the Metasploit tool targets. But some companies are not diligent in upgrading their software to add the patches, so they are vulnerable to attackers using the new tool. They hire consultants like Gates to help them make sure they are protected.

Metasploit hacks are available for other software programs, including Microsoft Corp's Windows as well as the Firefox and Internet Explorer browsers.

Continue reading "Hacking Oracle's database will soon get easier "

Erin Andrews 'Nude Video' May Install Computer Virus

nancy@compsecglobal.com (Nancy Pursley) — Thu, 23 Jul 2009 11:48:26 -0500

Searching online for that nude video of ESPN reporter Erin Andrews? Better not, say computer security specialists.

Crafty hackers have created a fake CNN Web page housing what purports to be the video of the glamorous sports reporter undressing â but when you click on it, you're asked to download a specialized video player, which is full of digital nastiness to infect your computer.

Macintosh users are not immune to this one â in fact, the hacker software detects what kind of computer you're using and dumps an even nastier Trojan horse onto Macs than it does PCs.

Andrews made news Monday when her lawyers confirmed that a nude video, apparently shot through a hotel room's peephole, which had been bouncing around the Internet for months was indeed of her.

According to security researcher Graham Cluley of Britain-based Sophos, the hacker video does show a woman undressing, but he can't confirm it's Andrews.

"Here's my advice," Cluley wrote on his official blog. "If you want to look at naked women, buy yourself an adult magazine or get yourself a girlfriend. If you go searching for sleazy videos then don't be surprised if it's not just your mind that ends up corrupted, but your computer, too."

Our Comment: Don't download anything that you don't check out first to see if it is just a scam.

Original Article