Hacker disguises Subseven Trojan horse as McVeigh execution video

Sophos Press Release
Timothy McVeigh

Reports from the Associated Press newswire have warned that a file posing as a video of the execution of Timothy McVeigh, the Oklahoma Bomber, is in fact infected by the Subseven backdoor Trojan horse.

"Hackers and virus writers will try all kinds of tricks to entice people into double-clicking on their malicious code," said Graham Cluley, senior technology consultant for Sophos Anti-Virus. "It seems this time that the hacker has focused on the public's morbid curiosity."

The execution of McVeigh on 11th June was broadcast to relatives of victims at a federal facility in Oklahoma City. The FBI has said there is no indication that the signal was intercepted.

Sophos continues to recommend computer users practise safe computing as well as running up-to-date anti-virus software.

More than 100 million users in 150 countries rely on Sophos’ complete security solutions as the best protection against complex threats and data loss. Simple to deploy, manage, and use, Sophos’ award-winning encryption, endpoint security, web, email, mobile and network security solutions are backed by SophosLabs - a global network of threat intelligence centers. Sophos is headquartered in Oxford, U.K., and is publicly traded on the London Stock Exchange under the symbol “SOPH.” More information is available at www.sophos.com/company.