Energizer USB Duo battery charger hides a Trojan

[Don McKenzie]

Energizer USB Duo battery charger hides a Trojan
March 9, 2010 by Lin Edwards

(PhysOrg.com) -- The Energizer Duo USB battery charger has been hiding a
backdoor Trojan in its software that affects computers using Windows.
According to Symantec the Trojan has probably been there since 10th May
2007.

Energizer has now taken the software for the model CHUSB charger off the
market and removed the site from which it could be downloaded, and the
company is asking customers who downloaded the Windows version to
uninstall it. There are easy steps to fight the Trojan in affected
machines, and Macintosh users are not affected.

http://www.physorg.com/news187335556.html

Cheers Don...


--
Don McKenzie

Site Map: http://www.dontronics.com/sitemap
E-Mail Contact Page: http://www.dontronics.com/email
Web Camera Page: http://www.dontronics.com/webcam
No More Damn Spam: http://www.dontronics.com/spam

Product Sellout: 15% OFF 4DSystems OLED Displays & modules.
http://www.dontronics-shop.com/micro-oled.html

 

[Don McKenzie]

D Yuniskis wrote:

Don McKenzie wrote:
Energizer USB Duo battery charger hides a Trojan
March 9, 2010 by Lin Edwards

(PhysOrg.com) -- The Energizer Duo USB battery charger has been hiding
a backdoor Trojan in its software that affects computers using
Windows. According to Symantec the Trojan has probably been there
since 10th May 2007.

Energizer has now taken the software for the model CHUSB charger off
the market and removed the site from which it could be downloaded, and
the company is asking customers who downloaded the Windows version to
uninstall it. There are easy steps to fight the Trojan in affected
machines, and Macintosh users are not affected.

http://www.physorg.com/news187335556.html

And *none* of the users who own this device have *ever* run
a virus scanner??

Makes you wonder, if Symantec said the Trojan has probably been there
since 10th May 2007, then why one of those customers that run virus
scanners, didn't report it to Energizer when they found it.

And if they did, why something wasn't done about it in 2007.

I saw them on the shelf recently and thought, I must get one of those.
Much better than carrying an ac charger around with my netbook gear.

Cheers Don...





--
Don McKenzie

Site Map: http://www.dontronics.com/sitemap
E-Mail Contact Page: http://www.dontronics.com/email
Web Camera Page: http://www.dontronics.com/webcam
No More Damn Spam: http://www.dontronics.com/spam

Product Sellout: 15% OFF 4DSystems OLED Displays & modules.
http://www.dontronics-shop.com/micro-oled.html

 

[D Yuniskis]

Don McKenzie wrote:

Energizer USB Duo battery charger hides a Trojan
March 9, 2010 by Lin Edwards

(PhysOrg.com) -- The Energizer Duo USB battery charger has been hiding a
backdoor Trojan in its software that affects computers using Windows.
According to Symantec the Trojan has probably been there since 10th May
2007.

Energizer has now taken the software for the model CHUSB charger off the
market and removed the site from which it could be downloaded, and the
company is asking customers who downloaded the Windows version to
uninstall it. There are easy steps to fight the Trojan in affected
machines, and Macintosh users are not affected.

http://www.physorg.com/news187335556.html

And *none* of the users who own this device have *ever* run
a virus scanner??

 

[Jon]

"Don McKenzie" <5V@2.5A> wrote in message
news:7vqme7FgokU1@mid.individual.net...

D Yuniskis wrote:
Don McKenzie wrote:
Energizer USB Duo battery charger hides a Trojan
March 9, 2010 by Lin Edwards

(PhysOrg.com) -- The Energizer Duo USB battery charger has been hiding a
backdoor Trojan in its software that affects computers using Windows.
According to Symantec the Trojan has probably been there since 10th May
2007.

Energizer has now taken the software for the model CHUSB charger off the
market and removed the site from which it could be downloaded, and the
company is asking customers who downloaded the Windows version to
uninstall it. There are easy steps to fight the Trojan in affected
machines, and Macintosh users are not affected.

http://www.physorg.com/news187335556.html

And *none* of the users who own this device have *ever* run
a virus scanner??

Makes you wonder, if Symantec said the Trojan has probably been there
since 10th May 2007, then why one of those customers that run virus
scanners, didn't report it to Energizer when they found it.

And if they did, why something wasn't done about it in 2007.

I saw them on the shelf recently and thought, I must get one of those.
Much better than carrying an ac charger around with my netbook gear.

Cheers Don...

Energizer hasn't said it but I'm reasonably sure we can thank China.



--- news://freenews.netfront.net/ - complaints: news@netfront.net ---

 

[AZ Nomad]

On Thu, 11 Mar 2010 09:57:04 +1100, Don McKenzie <5V@2.5A> wrote:

D Yuniskis wrote:
Don McKenzie wrote:
Energizer USB Duo battery charger hides a Trojan
March 9, 2010 by Lin Edwards

(PhysOrg.com) -- The Energizer Duo USB battery charger has been hiding
a backdoor Trojan in its software that affects computers using
Windows. According to Symantec the Trojan has probably been there
since 10th May 2007.

Energizer has now taken the software for the model CHUSB charger off
the market and removed the site from which it could be downloaded, and
the company is asking customers who downloaded the Windows version to
uninstall it. There are easy steps to fight the Trojan in affected
machines, and Macintosh users are not affected.

http://www.physorg.com/news187335556.html

And *none* of the users who own this device have *ever* run
a virus scanner??

Makes you wonder, if Symantec said the Trojan has probably been there
since 10th May 2007, then why one of those customers that run virus
scanners, didn't report it to Energizer when they found it.

And if they did, why something wasn't done about it in 2007.

I saw them on the shelf recently and thought, I must get one of those.
Much better than carrying an ac charger around with my netbook gear.

Yeah. I was just thinking the other day: what can I do in addition
to what I'm doing now to burn out those 500ma usb ports. Maybe I can
look around for a USB toaster oven. Until I find one of those, the
energizer battery charger is perfect!

 

[Mickel]

"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn97lc$7hf$2@speranza.aioe.org...

And *none* of the users who own this device have *ever* run
a virus scanner??

*Surely* this trojan didn't actually do anything. If it started calling out
on port 7777 someone would have noticed.

 

[D Yuniskis]

Mickel wrote:

"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn97lc$7hf$2@speranza.aioe.org...
And *none* of the users who own this device have *ever* run
a virus scanner??

*Surely* this trojan didn't actually do anything. If it started calling out
on port 7777 someone would have noticed.

How do you know it calls *out* and doesn't just open 7777 and
*wait* for an incoming connection?

Regardless, a virus scan would/should have noticed the payload.

 

[Mickel]

"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn9g1s$jk6$1@speranza.aioe.org...

How do you know it calls *out* and doesn't just open 7777 and
*wait* for an incoming connection?

Possibly but considering even basic home routers have nat these days it
wouldn't be very effective. So pretty much it would do nothing.

Regardless, a virus scan would/should have noticed the payload.

Why? Unless it is a know virus it's unlikely to get picked up.

 

[Przemek Klosowski]

On Wed, 10 Mar 2010 16:01:38 -0700, D Yuniskis wrote:

Don McKenzie wrote:
Energizer USB Duo battery charger hides a Trojan March 9, 2010 by Lin

And *none* of the users who own this device have *ever* run a virus
scanner??

A virus scanner only detects the viruses that match a known signature, or
which do something that it knows about. If the malware is stealthy enough
it won't be detected.

 

[D Yuniskis]

Mickel wrote:

"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn9g1s$jk6$1@speranza.aioe.org...
How do you know it calls *out* and doesn't just open 7777 and
*wait* for an incoming connection?

Possibly but considering even basic home routers have nat these days it
wouldn't be very effective. So pretty much it would do nothing.

Regardless, a virus scan would/should have noticed the payload.

Why? Unless it is a know virus it's unlikely to get picked up.

In two years it remained hidden?
No one ever ran TCPview?

 

[Jim Stewart]

D Yuniskis wrote:

Mickel wrote:
"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn9g1s$jk6$1@speranza.aioe.org...
How do you know it calls *out* and doesn't just open 7777 and
*wait* for an incoming connection?

Possibly but considering even basic home routers have nat these days
it wouldn't be very effective. So pretty much it would do nothing.

Regardless, a virus scan would/should have noticed the payload.

Why? Unless it is a know virus it's unlikely to get picked up.

In two years it remained hidden?
No one ever ran TCPview?

No, but I ran Topview once...

 

[keithr]

Jim Stewart wrote:

D Yuniskis wrote:
Mickel wrote:
"D Yuniskis" <not.going.to.be@seen.com> wrote in message
news:hn9g1s$jk6$1@speranza.aioe.org...
How do you know it calls *out* and doesn't just open 7777 and
*wait* for an incoming connection?

Possibly but considering even basic home routers have nat these days
it wouldn't be very effective. So pretty much it would do nothing.

Regardless, a virus scan would/should have noticed the payload.

Why? Unless it is a know virus it's unlikely to get picked up.

In two years it remained hidden?
No one ever ran TCPview?

No, but I ran Topview once...

Jeeze you're old

Most people did only run it once.