Viruses/Worms News

Skype Trojan malware can secretly record VoIP calls

Friday, August 28, 2009

Security researchers have spotted attack code published on the web that could allow hackers to secretly record audio and video sent over the Skype VoIP service. The Trojan malware called Skype.Peskyspy records Skype calls and stores them as an mp3 file for later transmission.

The Trojan injects a dll component into a Skype process and then hooks the "send" and "recv" APIs in Skype to the Trojan's own custom functions, according to web security firm Sophos.

"This allows the Trojan to extract and save the audio and video data and send it back to the attacker," wrote SophosLabs researcher Richard Cohen on the company's blog.

Although Skype secures the data while it's being transmitted between callers, the Trojan can intercept the data at the sender or receiver end.

"In this case, you yourself can be secured to the hilt, but if the person you're talking to on Skype has a Trojan installed then it's still going to steal the words right out of your mouth," Cohen wrote.

The Trojan was discovered by a major internet security firm, which reported that the Trojan is being spread via email links and social engineering attacks in spam emails and messages, according to the Tech Herald.
ADNFCR-1765-ID-19337585-ADNFCR

Related News:

Researchers: Malware attackers reloading for Windows 7 assaults - 11.20.2009
A report issued yesterday by computer security firm Symantec says that hackers are undoubtedly reworking their malicious software to target Windows 7 as more users switch to the latest version of Microsoft's flagship OS.

Want to secure your iPhone against intruders? There's an app for that - 11.20.2009
Cisco Systems today released a free iPhone app that will allow users to receive security updates and the latest news on web threats, as well as aggregating additional security related content for iPhone users.

Microsoft says 64-bit versions of Windows are harder to infect - 11.19.2009
Members of Microsoft's security team write that 64-bit editions of Windows are much less susceptible to malware attacks, but outside experts caution that 64-bit malware could be the next big thing in cyber crime.

Google coming down hard on malicious advertisers - 11.18.2009
Search giant Google has said that it will lay down the law where scam artists and malvertisers are concerned: Permanent bans will be the result of any fraudulent activity on the company's AdWords service.

If at first you don't succeed: Most malware protection fails first round of certification testing - 11.17.2009
A study performed by security testing and research firm ICSA Labs says that almost four out of five computer security products fail their first certification tests and need to be retooled for a second and sometimes a third attempt.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now