Welcome To Signs101.com: Largest Forum for Signmaking Professionals

Signs101.com: Largest Forum for Signmaking Professionals is the LARGEST online community & discussion forum for professional sign-makers and graphic designers.


  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

trojan horse impersonates windows activation

Discussion in 'General Software' started by Techman, May 5, 2007.

  1. Techman

    Techman Major Contributor

    Jun 24, 2003
    May 04, 2007 -- Symantec Corp. researchers today warned of a Trojan horse in the wild that poses as a Windows activation program to dupe users into entering credit card information in an attempt to reanimate their machines.

    Dubbed Kardphisher, the Trojan horse is nothing much technically, reported Takashi Katsuki, a Symantec researcher. But its author has "obviously taken great pains to make it appear legitimate."

    Once the malware is installed, it throws up an official-looking screen that claims the user's copy of Windows was activated by someone else. "To help reduce software piracy, please reactivate your copy of Windows now," the screen reads. "We will ask you for your billing details, but your credit card will NOT be charged."

    Selecting "No," said Katsuki, shuts down the PC. "Yes," meanwhile, leads to a second screen where the user is asked to enter his name and credit card information, which is then transmitted to the hacker's server. "This Trojan teaches us all a good lesson," added Katsuki. "Trust no one."

    According to Symantec, the Trojan horse affects Windows 95, 98, 2000, NT and Server 2003.

  2. Replicator

    Replicator Major Contributor

    Nov 19, 2006
    Sun City, AZ
    Thanks for the tip Techman !

Share This Page