Mario Bros. Game Really A Worm Attack - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


Mario Bros. Game Really A Worm Attack

A malware author is tempting unsuspecting users to open a malicious e-mail attachment by offering up a romp down memory lane with Mario and Luigi.

Miss those carefree days back in the early '80s when you were playing Super Mario Brothers?

If you do, beware of a new spam campaign that is spreading a mass-mailing worm. Researchers at security company Sophos reported that the spammed messages lure users to open an attachment by promising them it will run one of the classic Super Mario Bros games.

While opening the attachment does launch a game with the Italian plumber jumping over obstacles and from platform to platform, but it also infects the user's machine with the Romario-A worm. The malware, which affects the Windows platform, sends itself out to e-mail addresses it harvests from the infected computer and reduces system security, according to Sophos. The worm also is given a task to run at a specific time every day.

According to Sophos, the message in the body of the e-mail generally reads: " Hi There, Do You Like Mario Bross ? Test it, and you'll like it ;] !"

"Fraudsters are constantly innovating to find new ways of tapping into users' psyches to tempt them into clicking on infected links and attachments," said Graham Cluley, senior technology consultant at Sophos, in a written statement. "Nintendo's resurgence in the games market with the Wii console and Mario's global retro appeal are factors playing directly into the hands of cybercriminals keen to dupe users. This kind of attack is particularly stealth-like because nostalgic gamers can actually play the game once they click, giving them no reason to suspect that something more sinister is lurking beneath."

The Romario-A doesn't use a new trick, by any means. It's simply the latest in a series of malware that pretends to be computer games or to actually run real games, according to Sophos. Other malware writers have used similar tricks. The W32/Bagle-U worm attempts to start the Microsoft Hearts game, while the W32/Coconut-A virus urges infected users to throw coconuts at pictures of a computer security expert and the Troj/Gonori-A Trojan plays Minesweeper when run.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
2021 State of ITOps and SecOps Report
2021 State of ITOps and SecOps Report
This new report from InformationWeek explores what we've learned over the past year, critical trends around ITOps and SecOps, and where leaders are focusing their time and efforts to support a growing digital economy. Download it today!
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

Pandemic Responses Make Room for More Data Opportunities
Jessica Davis, Senior Editor, Enterprise Apps,  5/4/2021
10 Things Your Artificial Intelligence Initiative Needs to Succeed
Lisa Morgan, Freelance Writer,  4/20/2021
Transformation, Disruption, and Gender Diversity in Tech
Joao-Pierre S. Ruth, Senior Writer,  5/6/2021
Register for InformationWeek Newsletters
Current Issue
Planning Your Digital Transformation Roadmap
Download this report to learn about the latest technologies and best practices or ensuring a successful transition from outdated business transformation tactics.
White Papers
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll