Slashdot Mirror

← Back to Stories (view on slashdot.org)

Trojan Deletes Your Porn, Music & Warez

Posted by ryuzaki0 on from the someone-else-to-think-for-you dept.

E. Vigilant writes "The new Trojan/Erazor-A has an interesting twist. In addition to deleting or disabling various security products and competing malware, it deletes any porn, warez and music in your P2P directories. While some opine that this trojan might have good intentions, remarkably few things infect the text files this trojan also deletes. No one yet knows who wrote this or why."

17 of 400 comments (clear)

  1. Altruism? I have my doubts... by TripMaster+Monkey · · Score: 5, Insightful

    From TFA:
    The assumption is that because the Trojan is only deleting certain file types in specific download directories used by P2P programs -- one of the main sources of inadvertent malware infection -- it is attempting to protect those it manages to infect.
    Well, that's a remarkably stupid assumption.

    What's more likely?
    1. The Trojan was designed to protect users from malware by deleting contents of P2P directories,
        - or -
    2. The Trojan was designed to strike a blow against P2P file sharers deleting contents of P2P directories.


    Let's analyze who benefits from each scenario:
    1. No one benefits, since the 'benefits' of having files that might be infected with malware deleted is more than offset by the security problems introduced by the deactivation of antivirus software, as well as the inadvertent deletion of many innocent files. Also, the Trojan writer, (in this scenario, a "Robin Hood" type character), receives no benefit other than a warm fuzzy feeling.

    2. RIAA, MPAA, and various software companies all realize tangible financial benefits as illegal file sharing is dealt a serious blow. Also, the Trojan writer, (in this scenario, a mercenary for hire) takes home a nice fat paycheck for a job well done.


    I pick avarice over sloppily executed altruism any day. I find it intriguing that this alternate explanation apparently didn't even occur to PC World.
    --
    ____

    ~ |rip/\/\aster /\/\onkey

  2. Finally! by Whiney+Mac+Fanboy · · Score: 5, Insightful
    *Applauds*

    Finally a threat that will make the average joe start to take computer security seriously! I look forward to a safe internet for everyone (I mean as soon as a few botnet node owner's loose their porn, peole will actually clean up their boxes!)

    On a more serious note, quoting the pcworld article:
    The Windows Trojan/Erazer-A Trojan looks at default folders for downloading MP3, AVI, MPEG, WMV, Gif, Zip graphic and video files, and wipes anything it finds with these extensions in the target locations.

    The assumption is that because the Trojan is only deleting certain file types in specific download directories used by P2P programs -- one of the main sources of inadvertent malware infection -- it is attempting to protect those it manages to infect. [emph mine]
    WTF? How could anyone think that it's to attempt to protect users when it doesn't delete executables from p2p folders? (for an interesting overview of real "white hat worms" see this vnunet article and the slashdot discussion on the blaster removal worm)

    This worm is clearly to scare people away from p2p - not protect them from other p2p malware.

    What's the bet that one of the companies that make oodles of money from content are behind this?
    --
    There are shills on slashdot. Apparently, I'm one of them.
  3. Geeks unite! by Anonymous Coward · · Score: 5, Funny

    All I know is that this is a very important problem we have to fix!! Destroying our financial records and stealing our identity is one thing. But touch a geek's pr0n collection ------- this means WAR!

  4. It... deletes PR0N??!! by Noryungi · · Score: 5, Funny

    I feel a great disturbance in the Force... As if a millions Slashdot posters all cried out in anguish...

    --
    The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
  5. Re:Altruism? I have my doubts... by Joebert · · Score: 5, Insightful

    What about the third scenario ?

    3) Virus writers stage this to make it look like the RIAA, MPAA, ect, are "pulling a Sony" in an attempt to pull a classic "Throw a rock at the bee hive the ranger is standing next to so BooBoo can grab the pic-a-nic basket".

    --
    Wanna fight ? Bend over, stick your head up your ass, and fight for air.
  6. Re:Thank god! by MobileTatsu-NJG · · Score: 5, Funny

    "Thank god! I use linux!"

    I thought Linux supported porn by now.

    --

    "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

  7. Apple needs to jump on this quickly! by dimer0 · · Score: 5, Funny

    ... and make a new commercial!

    [old guy is coughing, wheezing, ...]

    [young guy] On a mac, you don't have to worry about losing your pr0n and warez!

    [young asian chic to young guys right seductively takes leg and wraps it around young guys waist]

    [cut to pic of imac]

  8. The next headline on slashdot.... by TheOldSchooler · · Score: 5, Funny

    Storage Space Mysteriously Triples on File Servers around the World.

  9. THIS IS WAR! by Progman3K · · Score: 5, Funny

    First they came for my credit card data, since I did not have Visa, I said nothing.
    Then they came phishing for my bank account info, since I did not have a bank account, I said nothing.
    Then they came for my porn...

    --
    I don't know the meaning of the word 'don't' - J
  10. Re:Slashspin by Gumph · · Score: 5, Funny

    Gosh, I have plenty of MP3, AVI, MPEG, WMV, Gif, Zip graphic and video files ... that aren't porn, illegal music & warez.

    Excuse me Sir, we've had some complaints from the other clientele, could you hand in your /. ID on your way out.

    --
    'By the pricking of my thumbs, something wicked this way comes'
  11. Re:Altruism? I have my doubts... by phyrebyrd · · Score: 5, Interesting

    I see an option 3 here.

    3) A strike against the MPAA, RIAA and any other "law abiding" corporation (who manages to be capable of CREATING those very laws) by targeting the computers that seed the incomplete, misnamed and intentionally infected files and the files on computers that have downloaded from them by users stupid enough to download things under 1kb.

    Any smart P2P user changes the default directories to customize their own bitspace so it's easier for the person using the software to find what they've downloaded, not to mention archive on another device or media those files they truly wish to retain.

    Do note that I did say *smart*.

    --
    "When the people fear their government, there is tyranny; when the government fears the people, there is liberty." -Thom
  12. Add option #4 by WidescreenFreak · · Score: 5, Interesting

    Call me cynical, but add:

    4) Write a trojan to wipe out what people apparently consider to be important so that they are more aware of virus scanners.

    Hmmm... would the various anti-virus companies do something like this to advertise the need for their products on people who lose gigs and gigs of files to a trojan? Nahhh....

    --
    The Overrated mod is for reversing inappropriate, positive mods, not for voicing disagreement with a post.
    1. Re:Add option #4 by Chelloveck · · Score: 5, Insightful

      Even simpler:

      4) Write a trojan to wipe out what people apparently consider to be important just because the trojan writer is a prick.

      --
      Chelloveck
      I give up on debugging. From now on, SIGSEGV is a feature.
  13. Re:Seems obvious to me. by mobby_6kl · · Score: 5, Funny

    Trojan wants you to go out and have real sex.

    They're not the only ones...

  14. Add option #5 by Sigg3.net · · Score: 5, Funny

    Not even that:

    5) Trojan not only sentient, but self-sustainable and conventionally biased. Will take over the world.

    Proof of Intelligent Design? You be the judge.

    --
    Defining Statistics and Social Research
  15. sorry ;) by miruku · · Score: 5, Funny

    6) profit!!

    --
    MilkMiruku
  16. No way, that would ever happen by budword · · Score: 5, Funny

    There is no way Pat Robertson and Jerry Falwell would ever risk their own secret porn stash. The parent is clearly a troll.