Amazon warns customers of infected digital photo frames
Amazon.com Inc. last week warned customers running Windows XP that a Samsung digital photo frame it sold through earlier this month might have come with malware on the driver installation CD.
An Amazon.com customer posted the warning a week ago to the online retailer's user forum. It its note to customers, Amazon.com noted that a Samsung advisory had been issued for the SPF-85H, an 8-in. digital photo frame that Amazon sold for approximately $150 starting in October.
The Samsung SPF-85H is no longer available on Amazon.com.
"We have recently learned that Samsung has issued an alert... our records indicate that you have purchased one of the digital photo frames through the Amazon.com website and are therefore affected by this alert," said Amazon in the note.
Samsung released its advisory download PDF on Nov. 27, and listed five photo frame models as affected: SPF-75H, SPF-76H, SPF-85H, SPF-85P and SPF-105P.
According to Samsung's alert, "a batch of Photo Frame Driver CDs contain [sic] a worm virus in the Frame Manager software. This is a risk of the customers [sic] host PCs being infected with this worm virus."
Samsung did not specify how the malware got on the CD, or how it escaped its quality control checks.
Amazon's advisory identified the malware as "W32.Sality.AE," the name assigned by Symantec Corp. Other security vendors, such as McAfee Inc. and Trend Micro Inc., have pegged the malware with other names, including "W32/Sality" and "Troj_Agent.xoo," respectively. Symantec's write-up said W32.Sality.AE was a downloader, a malicious program that once installed, downloads even more malevolent attack code.
Most security companies said that the malware -- variously labeled "virus" and "Trojan" -- was first spotted in the wild last August, although some reported earlier variations as far back as mid-2007.
People who purchased a Samsung photo frame should download an updated -- and theoretically malware-free -- version of the Windows XP edition of Frame Manager from Samsung's support site, Amazon recommended.
Only users running Windows XP are at risk, Samsung and Amazon said; Windows Vista is immune.
Hardware with malware is almost a holiday tradition. Last January, for example, Best Buy Co. admitted that it had sold infected digital picture frames under its in-house Insignia brand during late 2007. Best Buy yanked the 10.5-in. frames from its stores, but did not issue a recall.
» posted by ITworld staff
Computerworld
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
amazon
Powered by Twitter
jfruh
Apple syncing patent can't come soon enough
pasmith
New Twitter features borrow from 3rd party clients
Esther Schindler
Open Source Changes the Software Acquisition Process
mikelgan
How to set up continuous podcast play on the new iTunes
David Strom
Five important Windows 7 mobility features
sjvn
Guard your Wi-Fi for your own sake
Sandra Henry-Stocker
Grepping on Whole Words
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.













Any guess as to where this malware came from?
Since the frame was probably made in china, the virus most likely came from chinese hackers that infiltrated the plant. Yet another reason to not buy anything from china.ウイング車
大阪でウイング車モーター修理・販売・在庫多数。大阪でパワーゲート車モーター修理・販売・在庫多。大阪でバッテリー販売。セルモーターリビルト。オルタネーターリビルト。リビルト在庫多数。大阪で電装品販売。リンク品在庫多数。