Clipboards hijacked by furtive code

Share this article:

Security firms are warning about a web link that is surreptitiously stored in a user's clipboard. It has been found in Adobe Flash-based advertisements on otherwise legitimate websites and has attacked clipboards on both Windows and Macs.

Mikko Hypponen, chief research officer at security firm F-Secure, said the attack repeatedly replaces the clipboard contents with what users thought they had placed there, so that each piece of information the user copies to the clipboard is successively flushed and replaced by the malicious code as the Flash file plays.

"Users have resorted to re-booting their computer to get rid of the link and others have killed the process thread," Hypponen told SCMagazineUS.com. "It is not at all obvious to the user why the clipboard doesn't work."

As to how innovative the attack seems, he added, "All our work would be so much easier if our enemies would be stupid." 

Online editor Chuck Miller contributed to this story.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

NIST finalizes cloud computing roadmap

NIST finalizes cloud computing roadmap

The NIST architecture is designed to accelerate the adoption of cloud computing.

Chinese MitM attack targets iCloud users

Chinese MitM attack targets iCloud users

The attack used a false certificate to trick iCloud users into handing over personal data and login credentials. With an attack of this size, some experts and researchers believe the ...

EPIC: driver data shared via V2V technology needs protection

The groups shared comments on V2V communications with the National Highway Traffic Safety Administration.