| 21 |
| Sep |
Article from Rik Ferguson
Filed under: Site Compromise,malware | RSS 2.0 | TB | Tags: compromise, hack, hacked, malicious code, malware, web | 12 Comments
UPDATE: I have been speaking to the folks from Razer, as soon as they were aware of the issue, they took down the support website and are working really hard to rectify things. It’s really great to see a company that have the safety of their customers so uppermost in their minds.
__________________________________________________________________________________________
The support website at gaming hardware manufacturer Razer, has been compromised to distribute malware.
Razer, in their own words are “the worldwide leader in terms of professional gaming peripherals. While we are light years ahead of our competitors in terms of technology, design and ergonomics“.
A large amount of the device drivers offered for download at the Razer support site were infected with a Trojan TROJ_DROPPER.JIZ. The Trojan delivers the original installer but then goes on to drop a copy of WORM_ASPXOR.AB in the System directory. The malware had very low detection rates, with only 7 out of 41 vendors offering generic detection.
I have informed Razer of this compromise and they have immediately taken the support website down for the time being. I am hoping to hear back from them once their root cause analysis is complete.
It is unclear how long the problem has been ongoing, so in the meantime, if you downloaded anything from Razer recently, head over to HouseCall and run a full system scan and clean up if necessary. Manual clean-up instructions can be found here.
| Gaming Mouse Manufacturer Razer Hit With Infected Drivers | Technology at Electronics Reviewer: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 4:58 am |
|
|
[...] the leading manufacturers of gaming mice, was giving out malware with their drivers, according to a post on security firm Trend Micro’s [...] |
|
| Gaming Mouse Manufacturer Razer Serves Up Infected Drivers | The IT Chronicle: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 5:47 am |
|
|
[...] the leading manufacturers of gaming mice, was giving out malware with their drivers, according to a post on security firm Trend Micro's [...] |
|
| photomaniacal.com » Blog Archive » Gaming Mouse Manufacturer Razer Hit With Infected Drivers: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 6:32 am |
|
|
[...] the leading manufacturers of gaming mice, was giving out malware with their drivers, according to a post on security firm Trend Micro’s [...] |
|
| Gaming Mouse-maker Razer Hit With Infected Firmware…[!!!] at BLOG & NEWS: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 6:49 am |
|
|
[...] with Trend Micro. After hearing comments from concerned customers, Trend researchers took a look at Razer’s drivers. They downloaded 8 infected drivers, and immediately contacted Razer. [...] |
|
| Syber News » Gaming Mouse Manufacturer Razer Hit With Infected Drivers: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 8:27 am |
|
|
[...] the leading manufacturers of gaming mice, was giving out malware with their drivers, according to a post on security firm Trend Micro's website.According to Trend Micro, a large number of the device [...] |
|
| Gaming Mouse Manufacturer Razer Hit With Infected Drivers | Student Tech News: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 8:33 am |
|
|
[...] the leading manufacturers of gaming mice, was giving out malware with their drivers, according to a post on security firm Trend Micro’s [...] |
|
| Razer Gaming drivers Infiziert mit Trojaner - Security News: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 3:48 pm |
|
|
[...] firmware beinhalten den Trojaner Aspxor.abDie Infektion wurde durch Getroffende gemeldet,wonach Trend Micro die Sache untersuchte,dabei ist fesstgestellt dass eine grosse anzahl von Treiber infiziert ist und [...] |
|
| Tweets that mention Razer downloads distributing malware » CounterMeasures -- Topsy.com: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 6:27 pm |
|
|
[...] This post was mentioned on Twitter by Rik Ferguson and 5箱/takahisa watanabe. 5箱/takahisa watanabe said: Razer downloads distributing malware http://bit.ly/3xKCgU [...] |
|
| Razer Downloads Distributing Malware: Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 7:06 pm |
|
|
[...] [...] |
|
| Alerta de seguridad por distribucion de virus troyano en descargas de drivers Razer: Monday, April 25th 2010, 10:15 pm -> Thursday, 24. September 2009 um 2:05 am |
|
|
[...] aparentemente inofensivas puede ocurrir una catástrofe inesperada. Leer más información en el blog de Trend Micro. Etiquetas: malware, troyano, virus Si te parecio interesante la entrada, puedes considerar [...] |
|
| Razer driver downloads hit by trojan « GameSync: Monday, April 25th 2010, 10:15 pm -> Thursday, 20. May 2010 um 10:41 pm |
|
|
[...] The Trojan delivered the original installer but then went on to drop a copy of WORM.ASPXOR.AB into the System directory, according to anti-virus company Trend Micro’s Counter Measures blog. [...] |
|
Monday, April 25th 2010, 10:15 pm -> Tuesday, 22. September 2009 um 4:00 am
[...] a researcher with Trend Micro. After hearing comments from concerned customers, Trend researchers took a look at Razer’s drivers. They downloaded eight infected drivers, and immediately contacted Razer. [...]