A destructive MSN Messenger virus has been infecting computers across Taiwan over the past week.
Thousands of users have received a link from friends, only to click on it and discover a backdoor virus has been installed on their computers, potentially giving someone else control over it.
Users who have had their PCs infected said that clicking on the MSN link caused their list of contacts to disappear and it became impossible to close MSN Messenger.
Some users also said that data was wiped off their computers, while others found nothing untoward after clicking on the Messenger link.
MSN representatives said that they were not yet clear how widespread the virus was.
Representatives of Microsoft Taiwan's MSN department said that by following the infected link, they have detected a backdoor virus named BKDR_RINBOT.A, which can access information or record keystrokes.
However, providers of antivirus software believed a different virus was involved.
Patrick Wang (王岳忠), a systems engineer manager from Symantec Greater China said that the virus really was the Backdoor.irc.Bot virus, which turned the computer into a "zombie" that can be controlled by a hacker.
Wang said that it was not a new virus and that it was added to Symantec's virus definitions as early as 2003. At that time, it was passed on via e-mail, but it is now instead being spread via real time communications software.
The virus uses the contact list to send the link so that the recipient will be taken off guard. The purpose of this kind of attack is two-fold: to obtain more contacts to continue to spread the virus, and to gain full control of the infected computer, Wang said.
A representative of TrendLab at antivirus software manufacturer Trend Micro said that infected computers would execute the virus every time the computer was rebooted and tried to connect to an IRC chat room server so that computers connecting to that server would become infected by the virus.
That would allow a hacker to alter files on the infected computer and even launch an attack on a Web site.
TrendLab also warned that it was becoming increasingly common for viruses to be spread via communication applications and that "Bot" viruses that turn computers into "zombies" were increasing by 15 percent every month. It also said the reason Microsoft had identified a different virus could be because it carried another virus or was mutating.
NATIONAL SECURITY: Authorities are working to confirm the identities of the military personnel involved and investigating possible illegal conduct and regulatory violations Authorities are probing possible national security implications after Kinmen police and immigration officers on Sunday found a Chinese woman allegedly posing as a tourist while engaging in prostitution involving more than 10 military personnel. The woman, surnamed Chen (陳), has since been deported, authorities said, adding that investigators are still working to confirm the identities of those implicated, as the records only listed code names and aliases. The case stemmed from a report received by the Kinmen District Prosecutors’ Office on Friday last week from the Jinhu Precinct of the Kinmen County Police Bureau. On Sunday, police, along with the National Immigration
STAY COOL: The HPA recommended that people stay hydrated, use air-conditioning or fans while indoors, wear loose-fitting clothes and walk in the shade while outdoors Employers must implement measures such as installing cooling equipment, and providing drinking water and rest breaks for outdoor workers starting from Monday next week, the Taipei Department of Labor said on Sunday. Employers who fail to comply could face fines of NT$30,000 to NT$300,000 under the Occupational Safety and Health Act (職業安全衛生法), the department said. Businesses in Taipei employing fewer than 100 workers, as well as registered self-employed workers with labor insurance coverage, could receive on-site assessments and guidance from occupational safety consultants to help them apply for central government subsidies to implement or improve heat-protection measures, it said. Under the Ministry of
GLOBALGIVING: ‘ Caving to external pressure is not acceptable for an organization that has cultivated justice reform and human rights for 30 years,’ one NGO said A slew of non-government organizations (NGOs) have withdrawn from the GlobalGiving fundraising platform after it announced it would use “Chinese Taipei” instead of “Taiwan” from next month. The Taiwan Good Rice Association wrote on Facebook on Friday that it was informed on April 28 via a teleconference call of the change, which was made because the platform wanted to operate in China. Taiwan Good Rice is to terminate all cooperative relationships with GlobalGiving in response to the platform’s “unilateral and non-negotiable” decision to remove references to Taiwan, the NGO said. “Taiwan is in the official name of Taiwan Good Rice Association and the
Chinese Nationalist Party (KMT) Chairwoman Cheng Li-wun (鄭麗文) yesterday briefed her party’s Central Standing Committee regarding her scheduled visit to the US between Monday next week and June 16, saying that her purpose would be to persuade the US that the Republic of China (ROC) Constitution was a “one China” constitution that would foster stable and peaceful cross-strait relations. The ROC Constitution is the most important defense for all Taiwanese citizens, as it upholds our democracy and has contributed to our robust economy, which aligns with international and US interests, she said. “We would not be troublemakers and drag the US under,”
RSS