Bladabindi Virus is infecting Indian computers, CERT-in warns

Cyber security experts have geared up to fight against a new variant of multi-identity clandestine virus called BLADABINDI. Computer Emergency Response Team (CERT-IN) have identified a new virus capable of infecting computers running Windows OS and stealing sensitive personal information for wicked purposes.

In a report, the CERT Team (expert in dealing cases involving hacking, phishing, etc.) highlighted, the virus spreads primarily through USB flash drives, popularly known as pen drive and data cards that already have few other viruses.

Then, it could steal sensitive user information from infected computer system or used as malware downloader to propagate further malware and provide backdoor access to the remote attacker.

What comes before us as worse news is that some of the Bladabindi variants could capture keyboard press, control computer camera and later transfer the collected sensitive information to a remote attacker.

Moreover, it possesses a unique ability to bypass a user’s firewall mechanism by acquiring a safe network domain id to add itself falsely to the firewall exclusion list.

CERT which intends to fortify security-related defences of the Indian Internet domain said,

A typical ‘Bladabindi’ variant propagates by way of copying itself into the root folder of a removable drive that creates a shortcut file with the name and folder icon of the drive.

When the user clicks on the shortcut, the malware gets executed, and Windows Explorer is opened and it makes it seem as if nothing malicious happened.

To overcome this, one can follow simple steps and keep the virus attack at bay. For an instance, scan computer system with the free removal tools

  •     Disable the autorun functionality in Windows.
  •     Use USB clean or vaccination software.
  •     Keep up-to-date patches and fixes on the operating system and application software.
  •     Deploy up-to-date anti-virus and anti-spyware signatures at desktop and gateway level.

Besides, users should avoid clicking or following unsolicited web links or attachments in email messages.

LEAVE A REPLY