Odlanor Spyware Used on PokerStars and Full Tilt
10 years ago
19 Sep
Cyber-security experts have discovered a serious spyware threat to players using the two biggest poker sites â PokerStars and Full Tilt.
ESET has revealed details of how the spyware trojan known as 'Odlanor' exposes the hole cards of unsuspecting players by sending screenshots from their computers directly to cheaters, who then use the information to âoutplayâ the unfortunate victims.
The malware is apparently installed secretly along with certain poker software programs including Poker Office, Tournament Shark and Poker Calculator Pro. The downloads are believed to have been from unofficial torrent sites, and have mainly affected Eastern European online players.
âWe have seen this trojan masquerading as a number of benign installers for various general purpose programs, such as Daemon Tools or uTorrentâ, explained Robert Lipovsky. The Senior Malware Researcher for Bratislava-based ESET continued, âIn other cases, the spyware is installed through various poker-related programs.â
Only two sites have been targeted so far, but they are the biggest in the poker world â PokerStars and Full Tilt. The Odlanor malware firstly ascertains if the sites are running, and if so, it then proceeds to capture screenshots of the victimâs cards, before sending them on to the criminal parties behind the trojan infection.
Apparently the âinfectionâ also seeks out the ID of the player, which can then be used to find where that person is playing; the person behind the malware can then join that table and view the victimâs cards. It is not clear yet whether the subsequent cheating of the victim is done manually (by another player) or by some automated program (a bot).
ESET has released data of the infected computersâ countries of origin âat least those known so far â with Russia and Ukraine counting for over 70% of the Trojanâs spread.
Comments
You need to be logged in to post a new comment