New Malware Simulates Hard Drive Failure 294
An anonymous reader writes "A nasty strain of malware goes beyond mere sensational alerts, it makes it seem the user's hard drive is failing. It moves files from All Users and the current Windows user's profile into a temporary location, making it appear as though problems with the hard drive are causing files to disappear. It also disables a user's ability to change wallpaper images and sets registry keys to hide certain icons — giving the impression that programs are going missing as well. Of course, it's all done in an attempt to get people to buy the software that will fix it."
The Game of Catchup (Score:5, Insightful)
Had this one get on one the computers I administer. Managed to poison the profile and for a brief while I thought the files had been deleted. Of course, I got the inevitable "isn't your AV and anti-malware software up to date", to which I responded "As much as can be, the user is relied upon not to be a simpering moron who clicks on every possible link."
Oh, and by the way, Microsoft, your fucking browser still sucks and is still atrociously insecure. Shape up, Redmond.
Re:The Game of Catchup (Score:3, Insightful)
"it's like a computer, only useless."
Re:False alert (Score:5, Insightful)
AND BACKUPS! *AND BACKUPS*!!!
RAID is *NOT* a substitution for backups. Delete a file on the RAID and it's gone. Someone takes the machine, and it's gone.
Backup your computer to offline media, and make sure to keep a (hopefully encrypted) copy of it at some remote location (like a family members house, work, wherever)
RAID IS NOT A SUBSTITUTION FOR BACKUPS!
Re:The Game of Catchup (Score:4, Insightful)
>Oh, and by the way, Microsoft, your fucking browser still sucks and is still atrociously insecure. Shape up, Redmond.
Really? Care to point to some statistics showing me big holes in IE9 that are actively used by malware?
Not much out there. Oh, there's no shortage of Java, Flash, and Adobe Reader holes, and according to stats lifted from crimepacks those are the ones used.
I just looked at that stats on my website. 90% of those users have Java installed. How many of those are the latest version? Maybe 50% Most of the flash installs are not the latest version. Who knows what version of Reader they have.
Plugin security is a nightmare right now. Blame Sun and Adobe for not having autoupdaters like Chrome does for Flash. Joe User has no idea what he's doing with a computer. Blaming MS isn't really helping him.
Re:The Game of Catchup (Score:4, Insightful)
Re:My end users say it was coming from MSNBC.com (Score:5, Insightful)
And sites complain when people block ads. This is of course why anyone with a brain blocks ads.
Comment removed (Score:5, Insightful)
Comment removed (Score:4, Insightful)
Re:The Game of Catchup (Score:4, Insightful)
The problem you describe isn't exclusive to the Linux kernel by any means. I have seen more-or-less the same sequence appear in all sorts of places - OpenLDAP's done it with multimaster replication (and still is doing it with server-side sorts), FreeBSD has done it with journalled filesystems, The Gimp is doing it with CMYK support and I don't doubt there are other pieces of software doing the same thing.
The sequence of events generally goes something like this:
(WTF slashdot? No ordered lists?)