Thursday, November 24, 2005

1. Backdoor/Slydude

In mid-1999, the Backdoor/Slydude Trojan horse (also known as Pws-Z) made the rounds. Slydude arrives as an email attachment called Nude.jpg that appears to be a JPEG (Joint Photographic Experts Group) file, but in reality, .JPG isn’t the actual file extension; it’s just part of the file name. The actual file extension is .SHS, but because Windows doesn’t recognize .SHS as a file extension, it doesn’t display it.
When a user double-clicks the Nude.jpg icon, a picture of a nude woman appears on-screen, but in the background, a Trojan horse installs a file in the System folder and adds a Registry setting that launches a Trojan horse whenever the user starts his computer. As a result, this Trojan horse sends passwords stored on the system to a designated email address


Post a Comment

<< Home