Meanderings

Buy a camera and get 0wn3d

Posted by: Samiuela LV Taufa on June 22, 2008 12:56:21 AM

Wow, I guess it was worth it after all paying for the anti-virus software running on my machines (AVG http://free.grisoft.com/)

So we didn’t get my new uber mobile phone, but we did get the compact digital camera (Olympus FE-340, made in Vietnam.) Unfortunately, the camera also came with an unexpected gift.

[AutoRun]
open=fun.xls.exe
shellexecute=fun.xls.exe
shellAutocommand=fun.xls.exe
shell=Auto
[VVflagRun]
aabb=kdkfjdkfk1

The camera’s internal storage memory can take about 30 photos (at least that’s the experience we got filling it up so we can tell how many it can handle.) We charged up the lithium re-chargeable battery and started taking photos.

Plug the camera into the computer to download the pictures and we get this nice little invitation.

fujitsu-fe-340-virus

What!!

It seems that this nice new camera has either been in the hands of store employees, or that manufacturing line has a virus infection.

Your convenience will be the death of you

Worse yet!!!

the [Autorun] note shown previously is contained in a file on the camera named “autorun.inf.”

It’s one of those “convenience” tools that everyone wants. Plug in your new tool/toy and have your computer automatically find out what to do with your new toy (like dropping your movie into the DVD player and the computer automatically starting the movie for you.)

Unfortunately for the convenience tool, it is also a nice little “vector” path-way for virus tools to get onto your computer “by invitation.”

Inconvenience pays off. Turn this little convenience feature off and configure your anti-virus to scan all inserted drives.

Read On: Nick Brown’s – Memory stick worms, for how easy it is for viruses to get onto your (Windows) computers through USB Memory sticks (or cameras, or phones)

For another view of the the problem, read Scott Dunns’ – One quick trick prevents AutoRun attacks.