IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Maintain your poker face, but a Trojan is reading your cards

Hackers spy on your online poker hand, enter the game, and beat you

Two hands fold back a pair of playing cards to reveal Aces.

Online poker players are being targeted by malware designed to spy on their virtual hand.

The virus, Win32/Spy.Odlanor, shares screenshots of the victim's cards with its creators, who are then able to join the game with a clear view of the target's hand, allowing them to cheat their way to a winning hand.

IT security company ESET found the Trojan in programs meant to help poker fans play better, as well as popular file-sharing applications.

Some versions of the virus are capable of targeting other information on the infected computer, such as passwords.

In a blog post, Robert Lipovsky, a security researcher at ESET, explained the Windows-specific malware has been active for several months.

The software monitors PC activity after infecting a machine, waiting for a victim to log on to Pokerstars or Full Tilt Poker, two of the largest online poker sites.

Once logged on, users' activity along with their dealt cards are monitored and sent to the perpetrator.

A player's ID can be searched on either site, allowing the attacker to join their table with a significant advantage. It is still unclear if the trojan's operator plays games manually or in an automated manner, said Lipovsky.

ESET found the virus hiding in PC utilities, well-known file-sharing applications, poker calculators, and player databases.

Newer versions of the virus include a general-purpose data-stealing application that is able to extract passwords from web browsers as well. The majority of activity came from Eastern Europe, with a large concentration of victims in Russia and the Ukraine.

Featured Resources

Meeting the future of education with confidence

How the switch to digital learning has created an opportunity to meet the needs of every student, always

Free Download

The Total Economic Impact™ of IBM Cloud Pak® for Watson AIOps with Instana

Cost savings and business benefits

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

Technology reimagined

Why PCaaS is perfect for modern schools

Free Download

Recommended

Hackers could use new Wslink malware in highly targeted cyber attacks
malware

Hackers could use new Wslink malware in highly targeted cyber attacks

1 Nov 2021
FBI raids Chinese POS business following cyber attack claims
malware

FBI raids Chinese POS business following cyber attack claims

27 Oct 2021
Malware developers create malformed code signatures to avoid detection
malware

Malware developers create malformed code signatures to avoid detection

24 Sep 2021
New malware uses search engine ads to target pirate gamers
malware

New malware uses search engine ads to target pirate gamers

21 Jul 2021

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

7 Jun 2022
Delivery firm Yodel disrupted by cyber attack
cyber attacks

Delivery firm Yodel disrupted by cyber attack

21 Jun 2022
Attracting and retaining talent through training
Sponsored

Attracting and retaining talent through training

13 Jun 2022