Hacking
The Microsoft Access flaw is being used to distribute the Keylogger.DB Trojan
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Cyber-criminals exploit Access flaw

Keylogger malware already being installed, says PandaLabs

Robert Jaques, vnunet.com 06 Mar 2008
ADVERTISEMENT

Security experts have warned of a new vulnerability in Microsoft Access which is being used by cyber-criminals to install malware on victims' computers.

PandaLabs said that the security hole is exploited through specially crafted Access files (.mdb) embedded with malicious code.

The flaw is being used to distribute the Keylogger.DB Trojan which is designed to steal confidential data by logging keystrokes.

PandaLabs said that this is a similar security problem to that discovered a few months back, categorised as CVE-2007-6026, but the new flaw also affects the msjet40.dll library, albeit at a different point.

Luis Corrons, technical director of PandaLabs, said: "Whenever a vulnerability of this type appears cyber-crooks will try to take full advantage.

"We can therefore expect to see more malicious Access files in circulation that contain this Trojan and other types of threat."

See also:

Trojan horse
Adware tops February malware chart
Kaspersky warns of Virtumonde Trojan downloaders  05 Mar 2008
Text messaging
Ransomware attacks target Symbian mobiles
Pay up, or you'll never see your text messages again  05 Mar 2008
Trojan horse
Hybrid Trojan/worm attacks turn nasty
New worms acting in Trojan-like ways  04 Mar 2008
Virus
Virus authors 'pack' malware to avoid detection
All the top 10 threats this month used the same packing method  29 Feb 2008

All Hacking
Tags: Security

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Java, J2EE, Developer, Spring, Hibernate, London, city, Graduat
| Aston Carter
Java, J2EE, Developer, Spring, Hibernate, London, city, Graduate. This is an amazing opportunity to join a successful city based team working at the cutting edge of development. My client is looking for strong Java/J2EE developers ... more >
E-Commerce, Greenfield, Agile, Java, J2EE, , JavaScript, SQL, L
| Aston Carter
E-Commerce, Greenfield, Agile, Java, J2EE, , JavaScript, SQL, London, City Graduate This is an exceptional opportunity for a talented Java, J2EE developer keen to work in a successful development team within arguable the best agile ... more >
2nd Line Support Analyst - London - to£40k
| Rullion Computer Personnel Ltd
2nd Line Support Analyst London £35, 000 to £40, 500 My client is a global market leader in the Internet Applications Industry. The company is continually progressing and looking for areas of growth and this ... more >
Security Solution Architect
| Rullion Computer Personnel Ltd
Security Architect / Information Security Specialist – St Albans - Global Leader - Shine At The Highest Level Security Solution Architect / Information Security Architect required by renowned blue-chip organisation offering the finest security projects ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2009 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe