Porn Virus Kenzero Blackmails Winni Users

A new virus, Kenzero, has struck popular file sharing service Winni, which tracks the web history of users and publishes it on a public website, blackmailing them into paying £10 in order to get their web history deleted from the public website.

The BBC reported that the virus, which is at a risk of affecting more than 200 million Winni users, infects those users who download a particular pornographic Japanese Hentai game.

Commenting on the prevailing outbreak of the virus, Rik Ferguson, senior security advisor at security firm Trend Micro, said in a statement that “We've seen the name before in association with the Zeus and Koobface trojans. It is an established criminal gang that is continuously involved in this sort of activity.”

The company explained that the Kenzero virus has been developed along the lines of a breed of virus known as ransonware which encrypt the documents, files and other content on an infected PC and then ask the user for money if they want to retrieve them.

The virus presents itself as a game installation screen and steals the personal details from unsuspecting customers. It then procures a webshot of the users history and posts it on the public website before emailing them asking for a 'ransom'.

Our Comments

Popular Japanese website Yomiuri has claimed that as of now almost 5,500 people have affected by the malware. This is a particularly nasty one and others have also reported that the virus (or variants) ironically pass themselves for IP and copyright lawyers.

Related Links

Porn virus publishes web history of victims on the net

(BBC)

Porn malware blackmails victims

(The Inquirer)

Browsing histories published online in Kenzero virus scam

(Telegraph)

Porn virus holds gamers to ransom

(Nine MSN)