How the Downandup Worm works


This is pretty interesting: there’s a new worm called Downandup that basically uses social engineering to spread itself.

Take a look at that screenshot. Notice anything weird?

When you insert a USB drive, it usually says something like “Open folder to view files.” Fair enough. But notice that there is a program that says the same thing “published by Microsoft.” That’s the trick. It basically convinces you that its a system action when it’s really an application. Tricksy tricksy.