Beware of fake SourceForge site offering malicious downloads
Posted on 18.04.2013
Cyber crooks have been misusing the reputation of the popular online source code repository SourceForge (sourceforge.net) and gave been pushing out malware from the sourceforgechile.net domain registered in the US earlier this month.

According to Zscaler researcher Julien Sobrier, one of the malicious files that could be downloaded from the fake SourceForge site is posing as a set of modifications for the popular Minecraft game - a considerable number of which actually exist on the legitimate repository page.

But this particular file - minecraft_1.3.2.exe - is actually malware closely related to the ZeroAccess Trojan, whose main goal is to hide itself on the infected computer, enslave it into a botnet, and surreptitiously click on online ads on the behalf of the computer owner and thus earn money for the botnet owner(s).

Users are always advised to download their software from reputable websites, but should also be careful and check whether the website URL is the correct one before starting any download.









Spotlight

10 practical security tips for DevOps

By working with the DevOps team, you can ensure that the production environment is more predictable, auditable and more secure than before. The key is to integrate your security requirements into the DevOps pipeline.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Tue, Mar 31st
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //