Week in Geek: New Malware Spreading via Windows Remote Desktop

Note: This article is part of our archive and is likely out of date.
(Links may not work, downloads have not been recently tested for safety)

By Akemi Iwaya on September 4th, 2011


This week we learned how to add apps to the Windows 7 Explorer favorites list, customize the date format in the Windows taskbar, saved money with the latest set of Geek Deals, had fun decorating our desktops with a Photographer’s Desktop Customization set, looked back at the most popular posts for August, and more.

Photo by Robiwan_Kenobi.

Weekly News Links


Photo by F-Secure Labs Blog.

  • Worm spreads via Windows Remote Desktop
    Anti-virus software vendor F-Secure is warning of a piece of malware by the name of Morto, which spreads using Windows’ Remote Desktop Server (RDP server). It does not exploit a Windows security vulnerability; instead, it scans IP address ranges for RDP port 3389 and then tries to log in as an administrator to any computers which respond using a list of common passwords.
  • LDAP flaw in OS X Lion opens major authentication security hole
    Apparently a major security hole has been found in OS X Lion systems that are set up to accept authentication through LDAP servers, where users may be allowed to log in to the system without providing a password. For networked systems that uses LDAP-based authentication for managing users and restricting network resources, this may be a fairly severe security risk.
  • Fraudulent Google certificate points to Internet attack
    A Dutch company appears to have issued a digital certificate for Google.com to someone other than Google, who may be using it to try to re-direct traffic of users based in Iran.
  • Safari users still susceptible to attacks using fake DigiNotar certs
    Those using Safari on Mac OS X are still vulnerable to “man-in-the-middle” attacks using fraudulent security certificates that hackers generated from Dutch certificate authority DigiNotar.
  • Attackers behind CA hack also targeted Tor
    The development team behind anonymisation network Tor is reporting that twelve certificates for the domain *.torproject.org were generated during the attack on Dutch SSL certification authority DigiNotar.
  • Linux kernel archives host compromised by attacker
    The Linux kernel archive website, which is located at kernel.org, was compromised by attackers last month. According to a statement posted yesterday on the website, unauthorized parties successfully seized root access to several kernel.org servers and planted a trojan.
  • Anonymous claims DNS attacks against Symantec, Apple, Microsoft
    The Sri Lankan branch of Anonymous claims to have hacked into the DNS servers of Symantec, Apple, Facebook, Microsoft, and several other large organizations over the past few days.
  • 10 ways to secure your smartphone
    With smartphone ownership on the rise and users increasingly storing important content on their phones, cybercriminals are more and more interested in these devices, which makes mobile security more pertinent than ever.
  • Kroes: Trust, security needed for wider cloud adoption
    Cloud computing plays an integral role in the new digital age but trust and security needs to be consistently instilled for people to be comfortable in such an environment, noted a senior European Commission (EC) official.
  • Google cuts security corners to gain market share
    It has been obvious for some time that Google’s app standards for Android are lenient to say the least. That’s why Android is the favored platform for mobile malware. But it turns out that Chrome extensions are a huge, and similar problem.
  • HP to bring back TouchPad for last production run
    Hewlett-Packard will bring back the TouchPad for one last production run in the wake of the explosion of consumer interest in the platform.
  • Has Samsung set its sights on HP’s WebOS?
    Samsung may not be interested in buying Hewlett-Packard’s PC business, but the company may be eying HP’s mobile WebOS division, according to a report from DigiTimes.
  • HP prefers to spin off PC unit, report says
    Hewlett-Packard said this past Monday that it prefers to spin off its PC business rather than sell it outright, according to a Reuters report. The company is studying the ramifications of spinning off its personal computer business.
  • Free tool for testing net neutrality
    IT security specialist Dan Kaminsky has announced N00ter, a tool for identifying artificial brakes on data traffic implemented by ISPs.
  • Google restores offline abilities for Gmail, Docs
    After months of delay, Google this week will let people use Gmail, Google Docs, and Google Calendar even when they’re offline, a key feature for making the company’s cloud-computing vision more practical.

Random TinyHacker Links


Super User Questions

Got a good question? Then Super User is the place to go for answers.


How-To Geek Weekly Article Recap

Get caught up on your weekly reading with our hottest HTG Main articles of the week.


Geeky Goodness from the ETC Side

Add some fun to your weekend reading with our most popular ETC posts of the week.


One Year Ago on How-To Geek

Work on customizing your Windows 7 system this weekend with these terrific articles from one year ago.


How-To Geek Comics Weekly Roundup


Akemi Iwaya is a devoted Mozilla Firefox user who enjoys working with multiple browsers and occasionally dabbling with Linux. She also loves reading fantasy and sci-fi stories as well as playing "old school" role-playing games. You can visit her on Twitter and .

  • Published 09/4/11
More Articles You Might Like

Enter Your Email Here to Get Access for Free:

Go check your email!