Skype Trojan Can Log VoIP Conversations 151
Posted
by
timothy
from the sans-malice-would-be-a-useful-thing dept.
from the sans-malice-would-be-a-useful-thing dept.
Slatterz writes "Security giant Symantec claims to have found the public release of source code for a Trojan that targets Skype users. Trojan.Peskyspy is spyware which records a voice call and stores it as an MP3 file for later transmission. An infected machine will use the software that handles audio processing within a computer and save the call data as an MP3. The file is then sent over the internet to a predefined server where the attacker can listen to the recorded conversations."
Platforms... (Score:3, Interesting)
Does this affect the Mac OS X version, or does at least one of the callers have to be on a PC?
Re:Doesn't seem terribly practical (Score:4, Interesting)
"The downside for the malware creators is that they would need a lot of time on their hands to go through hours of Skype audio files to find anything of monetary interest."
You seem to be laboring under the idea that using speech recognition software would not occur to these people, or that the cost of transcription would be higher than the benefit received. First, it's already in widespread use in certain industries. Second, some targets are going to yield much better information than others -- you're correct that if you target a 100,000 random skype phone conversations you won't get much. But what if you only targeted people using it between the hours of 9am and 5pm and had job titles and functions associated with financial data?
Suddenly, you've got yourself a viable criminal enterprise.
Re:How can you hide this? (Score:5, Interesting)
Re:Larger problem than Windows. (Score:3, Interesting)
Re:Platforms... (Score:2, Interesting)
Given how many linux users (or people liking to pretend they're linux users) there are here, I'd say you're wrong.
Symantec geniuses can click a /. link (Score:2, Interesting)