PDA

View Full Version : Malicious adobe_update.exe Today (8/22)


Matt
08-22-2009, 10:49 PM
This afternoon (between 3:50 and 4 PM EST) we were visited by a new member who maliciously hid some code in his posts that caused anyone who viewed the thread with his posts to either get an error message or be presented with the directive to download an update to Adobe Acrobat called adobe_update.exe. In fact, this executable can cause computers to be infected with the 'Koobface' virus. He has since been removed and his posts have been deleted (as of 10:25 EST) so the threat of infection no longer exists.

Even if you opened those threads, you only may have been infected if:
1) You installed the adobe_update.exe file AND
2) Your virus software isn't up to date

If you think you were infected with the virus or want to learn more, please browse to this link and follow the removal steps:
http://tonysgeektips.wordpress.com/2008/12/04/update-on-koobface-virus/

If you have any questions, let me know. It may be best to post and follow-up questions here as they may be of interest to others.

Jay Wolt
08-22-2009, 11:28 PM
Matt - what was the thread content w/ the virus attachment?

Matt
08-22-2009, 11:47 PM
5 threads were posted in. The only two on the main forum were the "Welcome to N54BB" thread and the "Ebay Caution" thread. The other 3 were BST threads.

V117collector
08-22-2009, 11:50 PM
Now how do you prevent savvy(Hackers) key-loggers from infecting borad members computers?

Personal privacy is a right and not a privilege:cool:

Here's a thread I posted regarding Internet Security:~ Maybe Brian McQueen might chime in since his known for being computer savvy!!!
http://www.net54baseball.com/showthread.php?t=112098

Matt
08-23-2009, 12:27 AM
To answer some questions I was sent privately, even if you posted in any of those threads, that wouldn't make you any more or less likely to be infected. Also, you don't need to do additionally do anything such as blocking a specific board member, as the offending user is gone.

tbob
08-23-2009, 12:28 AM
I saw the adobe update but luckily I didn't upload. I think you should post the jackass' name so we'll know who the cretin is. :mad:

DixieBaseball
08-23-2009, 01:50 AM
Matt - Oddly enough, on Monday of this week I got a link through facebook, from a person I knew, which read "Funny Video - LOL " and had a link below it, looked exactly how Facebook link type emails look when you get them and I clicked on that link (I never click on links, but this one caught me totally off guard)... Bad mistake... Been battling this virus all week, and my virus software has fought back, but been disruptive to say the least as I am getting a few type pop ups, etc.

These are related, but what nut-job wants to waste good time doing such a thing !?! (Conspiracy Theory - Security Software Providers)