Security experts yesterday warned that a growing number of maliciously coded web pages are downloading spyware programs onto computers without the consent of the sites’ visitors.
These web pages are designed by cyber criminals to exploit different software vulnerabilities to automatically install malware on systems, Panda Software warned. The majority of the websites try to tempt users by offering pornographic or illegal content, but some "particularly dangerous" new sites have begun offering Sudoku puzzles as a social engineering hook to attract unwitting victims.
Typically the application operates perfectly, allowing users to play the Sudoku game. However, without the users knowledge, it downloads a spyware, YazzleSudoku, every time the user opens the application. Once YazzleSudoku is installed on a computer, it creates several Windows registry entries to ensure that it remains active. Similarly, it generates a series of files it needs to operate, with names such as RL_SudokuInstaller.rar.lnk, or Yazzle Sudoku. Then, YazzleSudoku displays advertising messages on the screens of compromised computers.
It is important to note that when starting to play the game, users are warned that spyware will be installed. If the user agrees, the spyware will be installed on the computer. However, if users do not agree, they will not be able to use the Sudoku program.
Luis Corrons, director of PandaLabs, said: "Spyware is, without a doubt, one of the major threats to users. This type of malware clearly conforms to the current objective of malware creators: earning money. Nevertheless, as the effects of spyware are not particularly obvious and do not appear to be dangerous, many users do not treat spyware with the caution needed. This is a mistake, as spyware does not just slow down systems and cause errors – it also intrudes upon the privacy of users who should not consent to its installation."