CERT-in has issued an alert against hacking attempts by a multi-identity virus – Bladabindi, that steals personal information of a user through USB flash drives. The virus checks for camera drivers and can install DLL plug-in to record and upload videos to remote hackers, as well as steal Chrome/Firefox passwords.
Computer Emergency Response Team-India (CERT-In) stated that the virus affects “Microsoft Windows operating system” and spreads through removable USB flash drives including pen drives and data cards. CERT-in warns that the malware can acquire as many as 12 aliases to conceal its real identity and later affect a computer system or personal information of a user.
"It has been reported that variants of the malware called Bladabindi are spreading. This malware steals sensitive user information from infected computer system. Bladabindi could also be used as malware downloader to propagate further malware and provide backdoor access to the remote attacker.
The agency stated that a potential attack by the virus could result into the loss of important proprietary data of a user like “computer name, country and serial number, Windows user name, computer’s operating system version, Chrome stored passwords, Firefox stored passwords, etc."
CERT-in has suggested countermeasures against “Bladabindi’. The company stated that users should not open unsolicited web links or attachments in email messages and visit untrusted websites. The agency also suggests using strong passwords and enable firewall at desktop and gateway level to protect their data from attacks. “Scan computer system with the free removal tools, disable the autorun functionality in Windows, use USB clean or vaccination software, keep up-to-date patches and fixes on the operating system and application software, deploy up-to-date anti-virus and anti-spyware signatures at desktop and gateway level,” the agency added.
CERT-In has reported 62,189 cyber attacks till May 2014, while 9,174 Indian websites were hacked by groups across the world. CERT-In has also warned Indian Internet users against phishing attacks from digital signatures that have “unauthorisedly” issued through the National Informatics Centre (NIC).