Security

Fake MP3 attack hits 360,000 PCs

Rogue malware attack seeps into Twitter

Scammers dial up Western Union attack

'Gumblar' attack explodes across the web

New BIOS attack renders antivirus useless

Breaking Stories

Enex net filter lab contract up for grabs

CSIRO sells search engine

Quantum encrypted networks coming soon to business

Australian code for US Coast Guard cutters

Huawei considers Australian 4G lab

By Shaun Nichols
May 9, 2008 7:39 AM
Tags: Fake | MP3 | attack | hits | 360,000 | PCs

Attackers are using fake MP3 files to launch one of the largest malware attacks in recent years, experts warned today..

The social engineering attacks purport to offer MP3 files or Mpeg movie files.

On downloading and launching the file, the user is prompted to launch an executable called 'play_mp3.exe' which installs adware.

Instead of a movie or song, the user gets a pair of adware tools for the Firefox web browser. If the user does not have Firefox installed, an error message asks the user to install the software.

McAfee researcher Craig Schmugar explained that the fake files have been traced to the fastmp3player.com domain. McAfee has detected the attacks on more than 360,000 machines, including more than 120,000 in the past 24 hours.

"This is one of the most prevalent pieces of malware in the past three years, " he said. "We have never had a threat this significant that arrives as a media file."

The malware launches a multimedia tool which Schmugar described as "simply a browser control wrapped in an executable".

"In the end you are left with a fake MP3 file taking up space, a worthless MP3 player, and adware that displays popup and pop-under ads," he said.

Comments

Be the first to comment on this article.

Thoughts on this article? Add a comment below.

Comment:

Want to participate in the discussion?

Or log in now to comment

Ads by Google

Top Stories

Part two of the regulatory reforms paper.

Power to the people?

Admits error with Macquarie Telecom data centre.

Spotlightthe topics we're following

Latest Comments

"I turn bluetooth off on my mobile to save the battery. Looks like now I've got another reason. "

on Bluetooth "Big Brother" tracks festival-goers

by Slatts Jul 4, 2009 1:09 PM

"I'm kind of assuming that the water was used in water cooled condensers for the air-conditioning...."

on Macquarie data centre loses water supply

by Slatts Jul 2, 2009 8:54 PM

"Why do we have to listen to Nick Minchin's comments? He is just about irrelevant in his opinions ..."

on Conroy reveals six regional backhaul winners

by ngo Jul 2, 2009 8:35 PM

" It's not very surprising that the Chinese junta still wants to impose the 'Green Dam - Youth ..."

on China paper says Web filter only a matter of time

by anonymous Jul 2, 2009 3:49 PM

"I would suggest for anyone wanting to join in the BOINC projects such as SETI@home, World ..."

on Five things your CPU can do when it's idle

by wolfgang8741 Jul 2, 2009 5:37 AM

Polls

What will you do when your iPhone contract comes up for renewal?

Retain my current service provider
Switch to a cheaper plan
Switch to a better network
Switch to whoever offers free tethering
Change handset altogether

| View results

Retain my current service provider

11%

Switch to a cheaper plan

18%

Switch to a better network

17%

Switch to whoever offers free tethering

18%

Change handset altogether

36%

TOTAL VOTES: 192