A cross-platform trojan has been discovered that hijacks Windows and Mac OS X machines and mobile devices, and steals audio and video feeds, screenshots and keystrokes .
The comprehensive espionage toolkit dubbed BackDoor.DaVinci.1 malware was thought to be the first use of a rootkit to hide a trojan on the Apple operating system.It allowed criminals to siphon data stolen by keyloggers to remote servers, along with screenshots, intercepted e-mail, and instant messaging chats including ICQ and Skype. Microphone and web cam feeds could also be captured.
DaVinci.1 also contained counter anti-virus and firewall tools.Russian anti-virus vendor Dr Web discovered the malware after a user this week reported the infected image.
"The trojan poses a serious threat to users because it not only intercepts any information on the infected computer but also gives criminals full control over a compromised system so that they can render it non-operational," the company said.
It said the malware had "functional modules" that includes a backdoor component that is encrypted and uses rootkits.
The malware spread via an Adobe Flash Player (*.jar) file that was signed with an invalid certificate.
DaVinci.1 would first detect the operating system of a target machine before launching malicious payloads.
Dr Web did not say which mobile operating platforms were also affected.
Copyright © SC Magazine, Australia
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @itnews.com.au to your white-listed senders.