July 11, 2008 2:39 PM PDT

Malware targets 'Simpsons' fans on AIM

Font size
Print
E-mail
Share
7 comments

Whatever you do, don't run that .exe file from "Chunkylover53," an alias for Homer Simpson.

Years ago, fans of The Simpsons added "Chunkylover53" to their AIM buddy list after learning that the writer-producer of the show was responding to fans in the voice of Homer from "Chunkylover53@aol.com."

Since then, the screen name has been inactive, until a few days ago when Chunkylover53's "Away" message appeared, prompting people to click on a link and run an executable in order to see "a *new* Internet-only exclusive Simpson's episode."

Of course, the file doesn't show a Simpsons video. It infects the machine with a Trojan that throws up error messages, crashes the computer when attempting to open Windows Explorer and drops other nasty files onto the machine, making it part of what is believed to be a Turkish botnet, according to FaceTime, which secures IM, collaboration and Web apps for corporations.

The long dormant "Chunkylover53" awoke this week with this "Away" message for Simpsons fans. Running the executable turns the PC into a zombie on a botnet.

(Credit: FaceTime)

The message has been changed since it was first displayed earlier this week. On Thursday night, this is what it said.

(Credit: FaceTime)

Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor.

Topics:: Vulnerabilities & attacks

Tags:: security,; trojan,; IM,; botnet

Share:: Digg; Del.icio.us; Reddit; Facebook; Twitter

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Inside CNET News

Scroll Left Scroll Right

The Download Blog
Google Chrome now bundled with Avast
You wouldn't necessarily expect it, but Avast and Google Chrome might be the next peanut butter-and-jelly combo in the software world.
Gallery
Top-rated reviews of the week (photos)
Crave
The 30 most anticipated games of 2010
With 2009 almost behind us, it's time to look forward and make our picks for the hottest games of 2010.
Beyond Binary
Windows 7 family pack starting to sell out
Microsoft had said it was a "while supplies last" offer and, sure enough, supplies are starting to run out. It's still available at Amazon, though.
Video
Microsoft's new mapping tricks
Technically Incorrect
In new ad, AT&T, Luke Wilson say Verizon is slow
The latest punch in the battle between AT&T and Verizon sees Luke Wilson being downloaded, allegedly via Verizon's 3G, without his head.
Video
A window into the Microsoft Store
Green Tech
'Green' gas and diesel get boost in biofuel grants
Federal government pumps more than $600 million in projects to demonstrate advanced biofuels, including cellulosic ethanol and plant-based replacements for diesel, jet fuel, and gasoline.
Technically Incorrect
Bartender, gimme a beer from outer space
Japanese brewer Sapporo launches a beer it says is made from barley grown on the International Space Station. The 250 winners of a lottery for it will each receive a six-pack.
Gallery
Solar Impulse aircraft flies, briefly (photos)
Crave
@Uh-oh: Twoddler lets toddlers send tweets
A tricked-out Fisher Price Activity Center with pictures of family members and friends attached and an Arduino board inside lets toddlers sent predefined messages to their own Twitter accounts.
30 Days of Innovation
Build muscle, charge your phone with YoGen
Easy Energy will launch the YoGen at CES 2010, a mobile charger that solely relies on hand power. The pocket-size charger lets you generates energy by repeatedly pulling a ripcord.