To help spread their latest viruses and trojans, malware creators are turning to legitimate content distribution platforms – meaning no one should trust downloads from any site without having a quick check first.
The latest infection was picked up by the guys over at digital security solution firm, Zscaler Inc, where they noticed a piece of Google code that was distributing some malicious software under the file name AdobeFlashPlayer.exe. While that file now appears to have been removed, it looks to have been some sort of trojan, even if the different anti-virus firms can’t agree on which one it was.
The file was hosted at: hxxps://code.google.com/p/onflashplayers/source/browse/AdobeFlashPlayer.exe.
“This incident sets a precedent that no file hosting service is beyond reproach”, said a Zscaler spokesperon. “Blind trust of specific domains should not be tolerated from an organizational or personal perspective. So set those security privileges to kill and keep one eye open for shady files coming from even a seemingly trusted location.”
KitGuru says: If anything should be taken from this story, it’s that no domain is 100 per cent secure from being a distribution platform for malware.