Trojan hinders gaming fun

Johannesburg, 21 Nov 2007

A new Trojan named 'Win32.OnLineGames.dr` can rob gamers` usernames and passwords, warns MicroWorld Technologies.

OnlineGames.dr comes into computers via offers and help notes posted by offenders in game forums, or by exploiting browser vulnerabilities, it says.

Written in Delphi language, OnlineGames.dr injects its DLL component into running processes and places an 'autorun.inf` file in the root of each drive to ensure it gets activated every time a drive is opened.

According to the company, once active, it snoops on user activity, steals confidential account information from unwitting victims and sends it to a remote attacker.

In a few cases, says MicroWorld, the Trojan also posts this stolen information to certain malicious Web sites and, with the username and password of a virtual game player in hand, the Trojan writer can directly log on to the victim`s account and sell off the characters and other goods for real-world money.

"This Trojan targets 'massively multiplayer online role-playing games` (MMORPGs), particularly the ones like Gamania and Wowtaiwan, meant for the Taiwanese audience," explains MicroWorld.

The company describes MMORPGs as "a genre of online computer role-playing games, where a huge number of players interact with each other in a fantasy world. Every participant plays the role of a fantasy character and buys and sells fictional goods online, while they also barter stuff among each other. On many Web sites you can buy goods and characters using actual currency..."

"The magnitude of the online gaming economy is much bigger than meets the eye," says Govind Rammurthy, CEO of MicroWorld Technologies. "The total amount of real-world money connected to all gaming sites is close to half-a-billion dollars, and there you can see why malware writers are training their guns on virtual game players. Trojans are known for their direct or indirect financial motives and this breed is no different.

"Malware targeting online game accounts has been in existence for a long time, but the stakes were never as high as they are now. To combat this menace, gaming companies need to come up with more sophisticated authentication procedures, while users should deploy competent protection for their computers. Because, when you are pitted against a cyber-criminal, neither does he play by the rules of the game nor does he give you a second chance," Rammurthy concludes.