Another kind reminder
We have in the past repeatedly warned thatfree things on the internet do not always come cost free. And today, wehave to make a kind reminder as we came across a new example.
Security Response received a file with a .tgz file extension, whichexploits a new unknown vulnerability in a free Japanese decompress tool"Lhaz v1.33". The file is detected as Trojan.Lazdropper.
After a successful exploit attempt, Trojan.Lazdropper drops two files, both detected as Backdoor.Trojan,onto the infected computer. As Backdoor.Trojan opens a back door tocommunicate with the author for further actions, it is obvious thatpurpose behind Trojan.Lazdropper is to take a complete control over theinfected machine.
As always, we recommend that you keep your security software up-to-date and follow safe computing practices.
We cannot stress this enough; if you receive any unexpected files, do not open them.
About Security Response Blog
Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.
Filter by:
Recently on Twitter
- You can find Symantec’s blog post on MSFT’s February #PatchTuesday updates here: http://t.co/kuRYUH5014 Feb 2012
- MSFT patches six critical vulnerabilities: http://t.co/bhNCCM8h14 Feb 2012
- Revamped Fake #Android Market for SMS Fraud http://t.co/mlrosRUH #malware10 Feb 2012
- Is Waledac spam dirtying the Russian 2012 elections? http://t.co/6gWaIyq610 Feb 2012
- Trojan.Activehijack found in the wild using a known #Office #vulnerability. http://t.co/7L8Xszwr09 Feb 2012