First virus-writing arrests in Japan

Posted by   Virus Bulletin on   Jan 29, 2008

Winny worm authors brought to book - for copyright violation.

Japan has seen its first ever arrests of virus writers, with three men taken into custody in Kyoto last week and charged with creating worms targeting the Winny file-sharing platform. While no specific virus-writing offence exists under Japanese law, the men were charged with copyright infringement, thanks to the inclusion of images of some well-known animated characters in their creations.

One of the three, a 24-year-old graduate student, has apparently admitted to creating the malware, while his two confederates are thought to have helped distribute it across the Winny system. The malware in question is thought to be a worm reported last year, which displays images from the Clannad anime series accompanied by messages warning against the use of illegal file-sharing networks, and may destroy downloaded media on infected systems.

Law-makers in Japan have been debating the introduction of laws covering malware creation since 2004, but they have yet to be enacted thanks to wrangling over the coverage of the proposed amendments.

More details can be found in local reports at the Mainichi Daily News here (with a follow-up piece here) or the Daily Yomiuri here. Comment from Sophos is here and more on The Register is here.

Posted on 29 January 2008 by Virus Bulletin

twitter.png
fb.png
linkedin.png
googleplus.png
reddit.png

 

Latest posts:

We are more ready for IPv6 email than we may think

Though IPv6 is gradually replacing IPv4 on the Internet's network layer, email is lagging behind, the difficulty in blocking spam sent over IPv6 cited as a reason not to move. But would we really have such a hard time blocking spam sent over IPv6?

Subtle change could see a reduction in installation of malicious Chrome extensions

Google has made a subtle change to its Chrome browser, banning the inline installation of new extensions, thus making it harder for malware authors to trick users into unwittingly installing malicious extensions.

Paper: EternalBlue: a prominent threat actor of 2017–2018

We publish a paper by researchers from Quick Heal Security Labs in India, who study the EternalBlue and DoublePulsar exploits in full detail.

'North Korea' a hot subject among VB2018 talks

Several VB2018 papers deal explicitly or implicitly with threats that have been attributed to North Korean actors.

Expired domain led to SpamCannibal's blacklist eating the whole world

The domain of the little-used SpamCannibal DNS blacklist had expired, resulting in it effectively listing every single IP address.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.