ESET®, a global pioneer in
proactive protection for more than two decades, warns users of PokerStars and
Full Tilt Poker of a new malicious spyware program called Odlanor.
The spyware, which takes screenshots of the infected player’s virtual poker
hand, is designed to allow the malware operator to cheat during online games.
As of September 16, several hundred
users have been infected with Win32/Spy.Odlanor.
Malware researchers at ESET analysed the trojan, discovering that it is
installed and activated on Windows systems in a number of ways.
„We have seen this trojan masquerading
as a number of benign installers for various general purpose programs, such as
Daemon Tools or uTorrent. In other cases, the spyware is installed through
various poker-related programs,“ says Robert Lipovsky, Senior Malware
Researcher at ESET.
Once installed, the malware first
checks if PokerStars or Full Tilt Poker is running. If confirmed, Odlanor
proceeds to take screenshots of the poker hand, all without alerting the
victim. The screenshots - which capture the player’s cards in the victim’s
virtual hand - are then sent to the attacker, giving the criminal an unfair
advantage at winning the poker game.
Detailed
information is available on ESET’s We Live Security blog - The Trojan Games: Odlanor malware cheats at poker.