Clipboards hijacked by furtive code

Share this article:

Security firms are warning about a web link that is surreptitiously stored in a user's clipboard. It has been found in Adobe Flash-based advertisements on otherwise legitimate websites and has attacked clipboards on both Windows and Macs.

Mikko Hypponen, chief research officer at security firm F-Secure, said the attack repeatedly replaces the clipboard contents with what users thought they had placed there, so that each piece of information the user copies to the clipboard is successively flushed and replaced by the malicious code as the Flash file plays.

"Users have resorted to re-booting their computer to get rid of the link and others have killed the process thread," Hypponen told SCMagazineUS.com. "It is not at all obvious to the user why the clipboard doesn't work."

As to how innovative the attack seems, he added, "All our work would be so much easier if our enemies would be stupid." 

Online editor Chuck Miller contributed to this story.

Share this article:

Sign up to our newsletters

More in News

Latest Citadel trick allows RDP access after malware's removal

Latest Citadel trick allows RDP access after malware's ...

Trusteer, an IBM company, said the new Citadel configuration was detected this month.

Cryptoblocker variant emerges, encryption differs from CryptoLocker

Trend Micro has detected a variant of CryptoLocker in the wild that relies on the advanced encryption standard.

Jimmy John's sandwich chain investigating possible breach

Some financial institutions have indicated that credit cards recently used at Jimmy John's locations have been used to make fraudulent purchases.