Follow Slashdot stories on Twitter

 


Forgot your password?
Close
typodupeerror
×
Security IT

AutoCAD Worm Medre.A Stealing Designs, Blueprints 139

Posted by Unknown Lamer from the will-emacs-be-next? dept.
Trailrunner7 writes, quoting Threat Post: "Security researchers have come across a worm that is meant specifically to steal blueprints, design documents and other files created with the AutoCAD software. The worm, known as ACAD/Medre.A, is spreading through infected AutoCAD templates and is sending tens of thousands of stolen documents to email addresses in China. However, experts say that the worm's infection rates are dropping at this point and it doesn't seem to be part of a targeted attack campaign. ... [They] discovered that not only was the worm highly customized and well-constructed, it seemed to be targeting mostly machines in Peru for some reason. ... They found that ACAD/Medre.A was written in AutoLISP, a specialized version of the LISP scripting language that's used in AutoCAD."
This discussion has been archived. No new comments can be posted.

AutoCAD Worm Medre.A Stealing Designs, Blueprints More

AutoCAD Worm Medre.A Stealing Designs, Blueprints

Comments Filter:

  • also Autodesk software needs local admin to run ri (Score:5, Interesting)

    by Joe_Dragon ( 2206452 ) on Monday June 25, 2012 @08:28PM (#40447059)

    also most Autodesk software needs local admin to run right or at least the older ver of it did.

  • The Law of Unexpected consequences (Score:5, Interesting)

    by Artifakt ( 700173 ) on Monday June 25, 2012 @09:24PM (#40447529)

    A brand new install of Autocad costs $3,995 and up. It produces files that have a distinctive extension, making them easy to identify and to tell from other types of documents without even having to examine internal code. Any file produced by a legal autocad install was made by somebody who paid serious money to be able to do so. Ergo, if someone can harvest a thousand Autocad files at random, a high proportion of them will be of valuable, useful stuff.

            Fighting warez sites distributing Autocad means, if the company is successful, a higher percentage of the documents made with it will be the valuable stuff. At 4K a legitimate copy, actually stopping a high percentage of 'pirates' means increasing the danger to your own legitimate users.

              If going through 10,000 autocad documents means finding, say, a dozen new patent filings and diagrams, two trade secret process designs for million dollar product lines, a few archetectural blueprint packages, and such, it becomes worth a government paying a programming team to write the software and putting three or four fulltime engineers and a few technicians on just evaluating those documents for the 'good' ones. If there were a thousand bootleg copies of the software for every legitimate one, that government might not bother to go through 10 million documents for about the same haul, as most of the bootleg copies won't be producing anything worth that much.

  • Re:Easy to track down (Score:5, Interesting)

    by Charliemopps ( 1157495 ) on Monday June 25, 2012 @09:26PM (#40447541)
    If you count all the custom versions of LISP out there used for scripting inside other applications I think you'd be rather surprised just how many LISP programmers there are. Half of them probably don't even know what they're writing in is based on LISP.

  • Re:can we stop calling it stealing (Score:5, Interesting)

    by bill_mcgonigle ( 4333 ) * on Monday June 25, 2012 @10:00PM (#40447817) Homepage Journal

    there might be some truth [washingtontimes.com] to that:

    Last month, for example, the Peruvian Defense Ministry canceled a $114 million contract with a consortium that included U.S. defense manufacturer Northrop Grumman after a Chinese company convinced officials the project did not meet technical specifications.

Slashdot Top Deals

"Here's something to think about: How come you never see a headline like `Psychic Wins Lottery.'" -- Comedian Jay Leno

Close