Trojan Skewers Security Software With Windows

Wednesday Jul 7th 2010 by Staff

Security researchers warn of a new type of attack that uses the Windows input method editor (IME) to delete antivirus files and install malware.

The Register: Researchers at security vendor Websense are warning of a new type of attack that exploits the Windows input method editor (IME). Normally, IME allows users of Western keyboards to type other kinds of characters, such as Chinese or Japanese. However, Websense explains that this new trojan "can install itself as an IME, then it kills any running antivirus processes and deletes the installed antivirus executable files."

Ironically, the exploit tricks users into downloading it by masquerading as an update for antivirus software.

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved