Windows IT Pro is the leading independent community for IT professionals deploying Microsoft Windows server and client applications and technologies.
  
  
  Advanced Search 


February 10, 2005

Microsoft Investigating Anti-Anti-Spyware Trojan

A Web Exclusive from WinInfo
Paul Thurrott
WinInfo
InstantDoc #45391
WinInfo
Email this Article
Printer Friendly
Reader Comments
Digg This
Del.icio.us
RSS
Subscribe to Windows IT Pro | See More Security Articles Here | Reprints | Or get the Monthly Online Pass—only $5.95 a month!

Microsoft is investigating a new electronic attack which, ironically, attempts to disable the Microsoft AntiSpyware beta product so that it can surreptitiously install spyware on users' systems. Dubbed the Troj/BankAsh-A Trojan, this new electronic attack seeks to steal passwords and online banking information.

Here's how it works. If successfully installed on a PC system, Troj/BankAsh-A will attempt to disable Microsoft AntiSpyware and the notification dialogs that application generates during attacks. Then, it will try to delete all of the files in the Microsoft AntiSpyware installation folder, and install other spyware applications that will monitor your PC use and steal important data, like passwords and credit card numbers.

Though this attack was just recently launched, Microsoft says it is actively investigating. "Microsoft will continue to work with law enforcement and the industry to help protect customers from these types of threat," a company representative said yesterday. "We also encourage users to use extreme caution when opening unsolicited files from known and unknown sources. Microsoft continues to recommend customers to evaluate the Microsoft AntiSpyware beta." It's likely that a forthcoming automatic update for AntiSpyware will be able to repel this attack.

End of Article

Reader Comments
Look up irony.


Anonymous User February 11, 2005 (Article Rating: )

afterall, who dares to rely only on microsoft "security"?

jk

Anonymous User February 14, 2005 (Article Rating: )

Hopefully, Microsoft will plug the hole or holes and maybe we can trust MS. I have my doubts.

ea

Anonymous User February 14, 2005 (Article Rating: )

> Hopefully, Microsoft will plug the hole or holes and maybe we can trust MS.

Who says there's a hole? If an malicious exe is already running it can do anything. Read the article: "If successfully installed on a PC system, Troj/BankAsh-A will attempt to disable Microsoft AntiSpyware"

A malicious exe can also format your hard disk - but do you say the harddisk has a hole?

The real question is how the exe got on the system in the first place. MS Anti-spyware is not a virus scanner.

Anonymous User February 15, 2005

'sic 'em, Bill!

Anonymous User February 16, 2005 (Article Rating: )

www.apple.com/switch

Anonymous User February 16, 2005

> www.apple.com/switch

Virus tries to take bite out of Apple's security
http://www.cnn.com/2004/TECH/internet/04/09/apple.trojan/

Anonymous User February 16, 2005

Do i use the windows firewall? NO.
Do i use the anti-spyware beta? NO

All hail Norton, McAfee and AVG!

Anonymous User February 24, 2005 (Article Rating: )

I am soooo sick of Microsoft bashers. Microsoft and other software developers are fighting a battle that has never been fought before. They are breaking new ground. All software has vulnerabilities. Which ever operating system has the highest market share is going to enjoy the focus of spyware and virus software engineers. I believe Microsoft is reacting responsively.

Anonymous User March 08, 2005 (Article Rating: )

You must be a registered user or online subscriber to comment on this article. Please log on before posting a comment. Are you a new visitor? Register now




Top Viewed ArticlesView all articles
Confirmed: Battery Life Issues Not Windows 7's Fault

Microsoft on Monday issued a lengthy statement about the recent Windows 7 battery controversy, echoing my assessment from earlier in the day, but backing it up with hard, cold evidence. ...

Battery Life Issues Almost Certainly Not Windows 7's Fault

While Microsoft is still investigating a notebook battery life issue that was supposedly caused by Windows 7, some interesting trends have emerged. ...

Microsoft Warns of Windows Version Expirations

Microsoft warned that this year will see three out-of-date Windows versions slip into retirement. ...
Security Whitepapers Reducing the Costs and Risks of Branch Office Data Protection

Solving Desktop Management Challenges in Healthcare

Solving Desktop Management Challenges in Education
Related Events The Increasing Threat of Financially Motivated Data Theft

Introduction to Identity Lifecycle Manager "2"

SQL Server Security: How to Secure, Monitor & Audit Your Databases

Check out our list of Free Email Newsletters!
Security eBooks Spam Fighting and Email Security for the 21st Century

Understanding and Leveraging Code Signing Technologies

A Guide to Windows Certification and Public Keys
Related Security Resources Introducing Left-Brain.com, the online IT bookstore
Looking for books, CDs, toolkits, eBooks? Prime your mind at Left-Brain.com

Discover Windows IT Pro eLearning Series!
Clear & detailed technical information and helpful how-to's, all in our trademark no-nonsense format


ADS BY GOOGLE

Job Openings in IT SPONSORED LINKS FEATURED LINKS
Collaborate with Confidence
Accelerate deployment and simplify Microsoft SharePoint management with EMC solutions and services.

Calculate your savings now
See how SAN is 57% cheaper than DAS over three years

Announcing Symantec Backup Exec 2010
With integrated deduplication and unified archiving technology.
Feb 25 - Are your IT Systems distributed? Or Convoluted?
Find out why integrated management solutions are more important than ever in today's IT environments and what criteria to consider when evaluating those solutions.

Virtualization Faceoff – Join the Discussion
Blogs, free poster, videos, community commentary – IT experts and peers face off on VMware & Microsoft virtualization solutions.

Should Your Email Live in the Cloud?
This Forrester report shows how-to calculate your on-premise email costs and compare with cloud-based alternatives and offers best practices for reducing email costs.

Exchange Server 2010: Deploying Unified Communications
register for this free virtual event and build your Unified Communications future on a strong Exchange Server 2010 foundation

New from Left-Brain.com - Manage VMware with PowerShell
Learn how to perform everything from simple ad-hoc reporting at the command-line to complex scripts that automate a massive deployment of hundreds of virtual machines.  Solve your old problems using less code than you thought possible!
Windows IT Pro Home Register FAQ for Windows WinInfo News
Europe Edition About Us Contact Us/Customer Service Media Kit Affiliates / Licensing  
SQL Server Magazine Office & SharePoint Pro DevProConnections IT Job Hound
Left-Brain.com Technology Resource Directory asp.netPRO ITTV Windows SuperSite 
 
 Windows IT Pro is a Division of Penton Media Inc.
 © 2010 Penton Media, Inc. Terms of Use | Privacy Statement