Retailer Offers Refunds for Malware-Infected Slide Scanners
The scanners were apparently infected with the Conficker worm.
"The affected device was exclusively sold through Tchibo and was infected with the Win32/Conficker.B virus which rose to notoriety four years ago when it caused infections around the globe. ... On the affected devices, Conficker is apparently present in the DCIM.exe and autorun.inf files," The H Security reports. "The autorun file itself cannot cause much trouble these days, as Microsoft modified the behaviour of Windows in this regard as a reaction to the original Conficker outbreak. However, if the .exe file is executed, the malware can still be spread on unprotected systems."
"According to an advisory published on the company’s website, the malware is easy to clean with any type of antivirus solution," writes Softpedia's Eduard Kovacs. "They even provide links to antivirus applications and instructions for more inexperienced users on how to clean malware from computers. However, customers are informed that they can also return the items and get a refund."
"This is not the first time that new and unused electrical devices were found to contain malware," notes Help Net Security's Zeljka Zorz. "In March 2010, [an] Energizer DUO USB recharger was discovered being sold bundled up with a backdoor Trojan, and a day later [an] HTC Magic smartphone sold by Vodafone [was] spotted containing the Mariposa bot client."