Home / mailings WSLabs, Malicious Web Site / Malicious Code: Habbo Hotel Trojan Keylogger
Posted on 20 February 2008
Websense Security LabWebsense(R) Security Labs(TM) has received reports of a Trojan keylogger aimed at the users of Habbo, a popular social networking site for teenagers. As of last month, Habbo's entry on Wikipedia said that over 8 million unique visitors access Habbo's Web sites around the world every month.
The party involved in spreading this malicious code poses as a third-party software tool developer for Habbo. Among the "tools" available for download, which will supposedly give the Habbo user an edge in the game is a file named ProRig.V9.exe (MD5: b80305ace7d4a01541467511df256287).
Unsuspecting victims who seek the touted benefits of this fake tool would instead have their own desktops compromised with spyware. Websense Security Labs recommends caution when trying out new third-party applicationss developed for Web 2.0 and social networking Web sites: especially ones with APIs open for third-party developers.
Websense filtering customers who have purchased Premium Group 3 (PG3) are protected from this attack.
For additional details and information on how to detect and prevent this type of attack:
http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=841
