Clipboards hijacked by furtive code

Share this article:

Security firms are warning about a web link that is surreptitiously stored in a user's clipboard. It has been found in Adobe Flash-based advertisements on otherwise legitimate websites and has attacked clipboards on both Windows and Macs.

Mikko Hypponen, chief research officer at security firm F-Secure, said the attack repeatedly replaces the clipboard contents with what users thought they had placed there, so that each piece of information the user copies to the clipboard is successively flushed and replaced by the malicious code as the Flash file plays.

"Users have resorted to re-booting their computer to get rid of the link and others have killed the process thread," Hypponen told SCMagazineUS.com. "It is not at all obvious to the user why the clipboard doesn't work."

As to how innovative the attack seems, he added, "All our work would be so much easier if our enemies would be stupid." 

Online editor Chuck Miller contributed to this story.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

More in News

Researchers observe more than a hundred connections to 'Backoff' sinkhole

Researchers with Kaspersky Lab were able to sinkhole two command-and-control servers used by certain Backoff point-of-sale malware samples.

Judge lifts stay but Microsoft won't hand over emails during appeal

A judge has lifted a suspension of a previous order compelling Microsoft to hand over customer emails stored on a server in Ireland.

Home Depot investigates possible payment card breach

Home Depot investigates possible payment card breach

Home Depot said on Tuesday that it is working with its banking partners and law enforcement to investigate a possible data breach.