Hackers hiding malware in subtitle filesMay 25, 2017 - 16:39 AMT PanARMENIAN.Net - An impressive new exploit gives hackers the ability to control your desktop through malware spread by fake movie subtitles. The exploit, which essentially dumps the malware onto your desktop and then notifies the attacker, affects users of video players like Popcorn Time and VLC, TechCrunch reports. Checkpoint found that malformed subtitle files can give hackers the ability to embed code into subtitle files popular with pirated movies and TV. Because these subtitles are usually trusted by video players and users alike they were an oft-overlooked vector for hack attacks. “Our research reveals a new possible attack vector, using a completely overlooked technique in which the cyberattack is delivered when movie subtitles are loaded by the user’s media player. These subtitles repositories are, in practice, treated as a trusted source by the user or media player; our research also reveals that those repositories can be manipulated and be made to award the attacker’s malicious subtitles a high score, which results in those specific subtitles being served to the user. This method requires little or no deliberate action on the part of the user, making it all the more dangerous. Unlike traditional attack vectors, which security firms and users are widely aware of, movie subtitles are perceived as nothing more than benign text files.” Related links: Top stories Yerevan will host the 2024 edition of the World Congress On Information Technology (WCIT). Rustam Badasyan said due to the lack of such regulation, the state budget is deprived of VAT revenues. Krisp’s smart noise suppression tech silences ambient sounds and isolates your voice for calls. Gurgen Khachatryan claimed that the "illegalities have been taking place in 2020." Partner news Most popular in the section | Czech-Armenian military cooperation discussed in Yerevan A delegation led by the Director General for the Industrial Cooperation Division of the Ministry of Defence of the Czech Republic visited Armenia. U.S. welcomes efforts to define Armenia-Azerbaijan border The United States welcomes efforts to define the border between Armenia and Azerbaijan, says Vedant Patel. Biden honors resilience of Armenian people on April 24 U.S. President Joe Biden has issued a statement on the 109th anniversary of the Armenian Genocide. Ex-Karabakh leader moved to solitary confinement cell in Baku, his son says David Vardanyan is the son of former Karabakh leader Ruben Vardanyan who who is currently imprisoned in Azerbaijan. |