This week, security company F-Secure uncovered an online scam that could have potentially cost players thousands upon thousands of dollars.
Hidden in a downloadable rakeback calculator tool, the scam used concealed executable files to obtain secret information on users’ aliases and passwords.
Once downloaded, the built in utility would use a device known as a ‘rootkit driver’ to roam hard drives undetected, gradually accumulating log-in information which would then be sent back to base.
This malicious file, RBCalc.exe, was available on popular poker site checkraised.com, but it must be emphasised that, according to investigations, the site was totally unaware of its existence.
In response to the astonishing revelation, checkraised.com immediately removed the tool from their site, issued a formal apology to all their users, and uploaded guidelines on how to remove the Trojan if need be.
To the relief of the company, no reports have come through of stolen money, although, it is still early days, and many users will have yet to hear of the scam.
With such details potentially accrued by the scammers, it is a serious concern to all those affected, and it is advised that anyone who downloaded this tool report the matter and change all passwords immediately.
F-Secure were clearly disturbed by the matter, but highly relieved to have been able to detect the scam before any noticeable damage was done. This unveiling was predominantly due to Blacklight, rootkit detection technology which was able to spot the rootkit device (which is used to conceal malicious software) in action.
But, whilst the storm has temporarily been calmed, it is a stark reminded for all us online gamers to be very wary about what we download. There are more than a few scammers out there, and a lot of money in poker, so, although it offers a poor reflection on the world we live in, we must be increasingly aware of the potential dangers that confront us.