Cyber security sleuths warn about a new malware circulating in social media


New Delhi: A new malware is circulating around social media networking sites that steal sensitive personal data and passwords of a user, according to cyber security sleuths.

The malware, which is known as ‘dorkbot’, is a combination of a virus and a worm. It is a deadly virus, which specifically affects Windows operating systems, and has capacity to steal cookies, browser data, passwords, and other sensitive information from the affected computers.

Computer Emergency Response Team of India (CERT-In) in its recent advisory said: “It has been observed that the variants of malware named as ‘dorkbot’ targeting windows operating systems are spreading. The malware belongs to the family of worms having backdoor functionality and spreads through various vectors, including drive-by-download attacks, social networking sites and compromised websites with browser exploits via removable drives in the form of auto-run exploits or by means of malicious links in instant messaging chats or internet relay chats.’

The advisory added: “To hide itself from detecting by anti-virus solutions, the malware injects its code into files like cmd.exe, ipconfig.exe, regedit.exe, regsvr32.exe, rundll32.exe, verclsid.exe and explorer.exe.”

The malware works by infecting systems by assuming fake identities of social media platforms like Facebook, and then reducing the immunity of systems and making them vulnerable to potential virus attacks. (Photo: