Energizer bunny in hacker scare
By Hani Megerisi
Posted on 8 Mar 2010 at 13:44
The Energizer bunny has finally been stopped – by a Trojan horse.
A USB-powered battery charger, available from the company, was found to contain the Arucer.dll Trojan, according to the US Computer Emergency Readiness Team (CERT) – a branch of the country’s Homeland Security.
An attacker is able to remotely control a system, including the ability to list directories, send and receive files, and execute programs. The backdoor operates with the privileges of the logged-on user
The file was hidden in the Windows driver software provided with the Energizer DUO charger. It listens for commands on port 7777 and, once activated, could download and execute files as well as send information to a remote hacker. Mac users are unaffected.
“An attacker is able to remotely control a system, including the ability to list directories, send and receive files, and execute programs," said the CERT statement. "The backdoor operates with the privileges of the logged-on user."
The Energizer DUO charger and its software have been sold throughout Europe, Asia and the US since 2007.
Energizer said in a statement that it had discontinued the unit and was “working with both CERT and US Government officials to understand how the code was inserted in the software”. The company has warned any users who have the DUO charger to uninstall it immediately.
CERT has also advised that blocking the 7777 port on a computer will block network connectivity through the backdoor.
- Google Glass: mugger bait, pub problem and other lessons learned from two dangerous weeks
- Twitter, please don't fiddle with my feed
- How Satya Nadella can get some pay-raise karma
- Windows 10: a step back to go forward
- Michael Dell: Cloud infrastructure is the roads, bridges and highways of the 21st century
- How to check your identity hasn’t been sold to the hackers
- Tim Cook: this is how much TV has changed since the 70s
- Westminster wins the .London battle
- 20 years of PC Pro: from deep pan pizza to virtualisation
- Five reasons why the Apple Watch leaves me cold
- How to sell more ebooks on Amazon
- 10 ways to make your business more secure
- Top five VoIP mistakes
- How to add in-app purchasing to an iPhone, Android or Windows app
- Remote-control ransomware: TeamViewer and software hardball
- Why laptops with serial ports matter to the Internet of Things
- Make your mobile battery last longer
- Small steps into handling Big Data
- Nexus 5: does it really run stock Android?
- How to get broadband to a garden office