Microsoft admits millions of computers could be infected with malware before they're even out of the box

 

Hackers have uploaded viruses which can help them steal people's personal data on to millions of PCs and laptops before they are even taken out of the box, Microsoft has admitted.

The company said it found malware which allows would-be criminals to remotely switch on and control cameras and microphones, among other devices, on machines which were still factory sealed. The software is loaded with counterfeit copies of Microsoft Windows, the company said.

“Cybercriminals have made it clear that anyone with a computer could become an unwitting mule for malware,” wrote Microsoft's assistant general counsel for its Digital Crimes Unit, Richard Domingues Boscovich.

On the company's blog, he added: “Malware allows criminals to steal a person's personal information to access and abuse their online services, including e-mail, social networking accounts and online bank accounts. Examples of this abuse include malware sending fake e-mails and social media posts to a victim's family, friends and co-workers to scam them out of money, sell them dangerous counterfeit drugs, and infect their computers with malware.”

Boscovich said the counterfeit software could enter the supply chain “at any point” because a machine normally passes through the stock rooms of numerous companies between the Microsoft factory and the consumer's living room. Any of these could potentially - unwittingly or otherwise - load counterfeited software on to the computer.

He added: “So how can someone know if they're buying from an unsecure supply chain? One sign is a deal that appears too good to be true. However, sometimes people just can't tell, making the exploitation of a broken supply chain an especially dangerous vehicle for infecting people with malware.”

The company launched a two-pronged attack on the developing Nitol botnet - a method of controlling many computers using only one. Microsoft's plan of legal action and technical disruption, codenamed “Operation b70”, found that “20 per cent of the PCs researchers bought from an unsecure supply chain were infected with malware”.

Boscovich wrote: “Our research into Nitol uncovered that the botnet was being hosted on a domain linked to malicious activity since 2008. This study also revealed that in addition to hosting b70, 3322.org contained a staggering 500 different strains of malware hosted on more than 70,000 sub-domains.

“We found malware capable of remotely turning on an infected computer's microphone and video camera, potentially giving a cybercriminal eyes and ears into a victim's home or business. Additionally, we found malware that records a person's every key stroke, allowing cybercriminals to steal a victim's personal information.

“The Nitol botnet malware itself carries out distributed denial of service (DDoS) attacks that are able to cripple large networks by overloading them with Internet traffic, and creates hidden access points on the victim's computer to allow even more malware - or anything else for that matter - to be loaded on to an infected computer.”

In the post, he also wrote that the malware was capable of transmitting to other computers via USB flash drives, meaning it would spread fast through a family or work place. Microsoft has now been given permission by a US court to shut down the domain behind the scheme.

According to PC Advisor, Boscovich revealed that Microsoft bought computers from “PC malls” in various Chinese cities, all of which had counterfeit copies of Windows XP or Windows 7 installed. Of the twenty purchased, three had inactive malware and one had live malware, called “Nitol.A,” that awoke when the computer connected to the Internet.

The problem is not thought to affect Western physical supply chains but the malware could be transmitted if users download infected software.

Arts & Entertainment
Madonna in her music video for 'Like A Virgin'
music... and other misheard song lyrics
News
Waitrose will be bringing in more manned tills
newsOverheard in Waitrose: documenting the chatter in 'Britain's poshest supermarket'
News
The energy drink MosKa was banned for containing a heavy dose of the popular erectile dysfunction Levitra
news
News
Much of the colleges’ land is off-limits to locals in Cambridge, with tight security
educationAnd has the Cambridge I knew turned its back on me?
VIDEO
Sport
Australia's Dylan Tombides competes for the ball with Adal Matar of Kuwait during the AFC U-22 Championship Group C match in January
sportDylan Tombides was diagnosed with testicular cancer in 2011
News
Ida Beate Loken has been living at the foot of a mountain since May
newsNorwegian gives up home comforts for a cave
Extras
indybest10 best gardening gloves
News
Russia's President Vladimir Putin gives his annual televised question-and-answer session
peopleBizarre TV claim
Arts & Entertainment
tvIt might all be getting a bit much, but this is still the some of the finest TV ever made, says Grace Dent
Arts & Entertainment
Comedian Lenny Henry is calling for more regulation to support ethnic actors on TV
tvActor and comedian leads campaign against 'lack of diversity' in British television
News
Posted at the end of March, this tweeted photo was a week off the end of their Broadway shows
people
News
peopleStar to remain in hospital for up to 27 days to get over allergic reaction
Arts & Entertainment
The Honesty Policy is a group of anonymous Muslims who believe that the community needs a space to express itself without shame or judgement
music
News
Who makes you happy?
happy listSend your nominations now for the Independent on Sunday Happy List
Life & Style
life
Independent
Travel Shop
the manor
Up to 70% off luxury travel
on city breaks Find out more
santorini
Up to 70% off luxury travel
on chic beach resorts Find out more
sardina foodie
Up to 70% off luxury travel
on country retreats Find out more
Have you tried new the Independent Digital Edition iPad app?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

ES Rentals

    iJobs Job Widget
    iJobs Gadgets & Tech

    Apprentice IT Technician

    £150.00 per week: QA Apprenticeships: This company is a company that specializ...

    1st Line Technical Service Desk Analyst IT Apprentice

    £153.75 per week: QA Apprenticeships: This company is an innovative outsourcin...

    Sales Associate Apprentice

    £150.00 per week: QA Apprenticeships: We've been supplying best of breed peopl...

    Apprentice C# .NET Developer

    £150.00 per week: QA Apprenticeships: We provide business administration softw...

    Day In a Page

    How I brokered a peace deal with Robert Mugabe: Roy Agyemang reveals the delicate diplomacy needed to get Zimbabwe’s President to sit down with the BBC

    How I brokered a peace deal with Robert Mugabe

    Roy Agyemang reveals the delicate diplomacy needed to get Zimbabwe’s President to sit down with the BBC
    Video of British Muslims dancing to Pharrell Williams's hit Happy attacked as 'sinful'

    British Muslims's Happy video attacked as 'sinful'

    The four-minute clip by Honesty Policy has had more than 300,000 hits on YouTube
    Church of England-raised Michael Williams describes the unexpected joys in learning about his family's Jewish faith

    Michael Williams: Do as I do, not as I pray

    Church of England-raised Williams describes the unexpected joys in learning about his family's Jewish faith
    A History of the First World War in 100 moments: A visit to the Front Line by the Prime Minister's wife

    A History of the First World War in 100 moments

    A visit to the Front Line by the Prime Minister's wife
    Comedian Jenny Collier: 'Sexism I experienced on stand-up circuit should be extinct'

    Jenny Collier: 'Sexism on stand-up circuit should be extinct'

    The comedian's appearance at a show on the eve of International Women's Day was cancelled because they had "too many women" on the bill
    Cannes Film Festival: Ken Loach and Mike Leigh to fight it out for the Palme d'Or

    Cannes Film Festival

    Ken Loach and Mike Leigh to fight it out for the Palme d'Or
    The concept album makes surprise top ten return with neolithic opus from Jethro Tull's Ian Anderson

    The concept album makes surprise top ten return

    Neolithic opus from Jethro Tull's Ian Anderson is unexpected success
    Lichen is the surprise new ingredient on fine-dining menus, thanks to our love of Scandinavian and Indian cuisines

    Lichen is surprise new ingredient on fine-dining menus

    Emily Jupp discovers how it can give a unique, smoky flavour to our cooking
    10 best baking books

    10 best baking books

    Planning a spot of baking this bank holiday weekend? From old favourites to new releases, here’s ten cookbooks for you
    Jury still out on Manchester City boss Manuel Pellegrini

    Jury still out on Pellegrini

    Draw with Sunderland raises questions over Manchester City manager's ability to motivate and unify his players
    Ben Stokes: 'Punching lockers isn't way forward'

    Ben Stokes: 'Punching lockers isn't way forward'

    The all-rounder has been hailed as future star after Ashes debut but incident in Caribbean added to doubts about discipline. Jon Culley meets a man looking to control his emotions
    Mark Johnston: First £1 million jackpot spurs him on

    Mark Johnston: First £1 million jackpot spurs him on

    The most prize money ever at an All-Weather race day is up for grabs at Lingfield on Friday, and the record-breaking trainer tells Jon Freeman how times have changed
    Ricky Gervais: 'People are waiting for me to fail. If you think it's awful, then just don't watch it'

    Ricky Gervais: 'People are waiting for me to fail'

    As the second series of his divisive sitcom 'Derek' hits screens, the comedian tells James Rampton why he'll never bow to the critics who habitually circle his work
    Mad Men series 7, TV review: The suits are still sharp, but Don Draper has lost his edge

    Mad Men returns for a final fling

    The suits are still sharp, but Don Draper has lost his edge
    Google finds a lift into space will never get off the ground as there is no material strong enough for a cable from Earth into orbit

    Google finds a lift into space will never get off the ground

    Technology giant’s scientists say there is no material strong enough for a cable from Earth into orbit