ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

Hackers can locate and exploit the Energizer USB charger backdoor

By | March 10, 2010, 1:21pm PST

Summary: Hackers using the freely available Metasploit tool can locate infected systems on the local network or gain access to a system running the Energizer backdoor.

Hackers using the Metasploit point-and-click attack tool can locate and exploit the backdoor Trojan that was recently found in the software included in the Energizer DUO USB battery charger

According to Metasploit creator HD Moore, pen-testers can use the freely available tool to locate infected systems on the local network or gain access to a system running the Energizer backdoor.

[ SEE: Energizer battery charger contains backdoor ]

The offending software, which has since been pulled by Energizer, contains Arucer.dll, which is a backdoor that allows unauthorized remote system access via accepting connections on 7777/tcp.follow Ryan Naraine on twitter

This allows an attacker to remotely control a system, including the ability to list directories, send and receive files, and execute programs. The backdoor operates with the privileges of the logged-on user.

It’s important to immediately uninstall the backdoor component of the Energizer USB charger software by deleting the Arucer.dll file from the Windows system32 directory.

* Source: HD Moore/Metasploit.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Back Door, Hacker, Engineering, Hacking, Tools & Techniques, Security, Management, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

12
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Hackers can locate and exploit the Energizer USB charger backdoor
efsane Updated - 8th Apr 2011
Great!!! thanks for sharing this information to us!
sesli sohbet sesli chat
View in thread
0 Votes
+ -
Great. Thanks for letting everybody know!
DTS Linux Advocate 10th Mar 2010
Especially the 'hackers' who didn't know!

Not good Ryan.
0 Votes
+ -
So, basically...
Mr. Slate 12th Mar 2010
You're advocating security thru obscurity? I thought you've always railed against that.
0 Votes
+ -
He's obviously being sarcastic.
AzuMao 12th Mar 2010
There was already an article posted about this trojan before, and he replied to that one, so he must have known of it.
0 Votes
+ -
Botnets.
AzuMao 10th Mar 2010
Making your own; lots of time and money.
Renting one; slightly less.
Stealing one and DDoSing its owner with it; priceless.

There are some that money can't buy.

For all the rest, there's Energizer.
0 Votes
+ -
Hey, the hackers probably ALREADY knew
Lerianis10 10th Mar 2010
And it's better to inform people who might have this stuff on their system BEFORE they are attacked, to be blunt!
0 Votes
+ -
Most of the users will just disconnect the chager
Earthling2 10th Mar 2010
...and will think they're safe.
0 Votes
+ -
They are.
AzuMao 11th Mar 2010
From exploding batteries, at least.
0 Votes
+ -
100% Unhackable Charger
AndyPagin 11th Mar 2010
I just plug mine into the mains socket. Works perfectly, as does my non-usb toaster/microwave/power-drill etc...
0 Votes
+ -
Plug in so you can plug in
barence773 11th Mar 2010
Why use a USB charger anyway? So you have to plug in your computer in order to plug in your charger? Who on earth would buy such a thing??

..
0 Votes
+ -
RE: Hackers can locate and exploit the Energizer USB charger backdoor
Agnostic_OS 11th Mar 2010
Must be battery of hackers out there :} ?
0 Votes
+ -
RE: Hackers can locate and exploit the Energizer USB charger backdoor
efsane Updated - 8th Apr 2011
Great!!! thanks for sharing this information to us!
sesli sohbet sesli chat

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix