Hackers breach PCs via Quicktime and Winzip


Hackers breach PCs via Quicktime and Winzip

Cyber criminals are trying to gain unauthorized access to PCs via security holes in QuickTime and WinZip programs, security firm Symantec has warned.

In its latest security alert, Symantec said malicious websites have been modified to exploit security flaws in both pieces of software. Although the flaws had been identified early as last year, Symantec said that this is the first time they had observed their use for hacking online.

The attacks work by placing malicious code with multiple exploits on websites, Symantec said in a security alert. The sites appear to be that of a trusted financial institution, but instead attempt to silently install keystroke-logging software, according to Symantec. Links to the sites are likely to be advertised in spam, it said.

David Lacey's security blog >>
The latest ideas, best practices, and business issues associated with managing security

Symantec website >>

Comment on this article: computer.weekly@rbi.co.uk


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy