BackDoor.TeamViewer.49 is the name of a backdoor trojan discovered by Russian security vendor Dr.Web, who claims the trojan will install the TeamViewer application on infected computers, so it can relay Web traffic from the crook to other servers on the Internet, effectively using the host as a proxy server.
Dr.Web security researchers, together with security experts from Yandex, first discovered the trojan at the start of May, distributed via a complex multi-stage mechanism.
Initial infection occurs via a tainted Adobe Flash update package
Users don't get infected with BackDoor.TeamViewer directly, but first through a malware dropper called Trojan.MulDrop6.39120, which Dr.Web says it's distributed online together with an Adobe Flash Player update package.
When users install this malicious Flash Player update, they get a legitimate Flash version, but also the Trojan.MulDrop6 trojan, which secretly installs TeamViewer on the victim's computer.
Dropping TeamViewer on infected devices is not something new, but the crooks don't use it to log into the victim's PC and take control over the device. Dr.Web claims that TeamViewer is used for something else.
Full Article: Windows Trojan Uses TeamViewer to Turn Your PC into a Web Proxy
Dr.Web security researchers, together with security experts from Yandex, first discovered the trojan at the start of May, distributed via a complex multi-stage mechanism.
Initial infection occurs via a tainted Adobe Flash update package
Users don't get infected with BackDoor.TeamViewer directly, but first through a malware dropper called Trojan.MulDrop6.39120, which Dr.Web says it's distributed online together with an Adobe Flash Player update package.
When users install this malicious Flash Player update, they get a legitimate Flash version, but also the Trojan.MulDrop6 trojan, which secretly installs TeamViewer on the victim's computer.
Dropping TeamViewer on infected devices is not something new, but the crooks don't use it to log into the victim's PC and take control over the device. Dr.Web claims that TeamViewer is used for something else.
Full Article: Windows Trojan Uses TeamViewer to Turn Your PC into a Web Proxy
