Gamblers on an online gaming site have had their PCs infected with a rootkit.
Some malicious rootkit software, called RBCalc.exe - or the Rakeback calculator - was being distributed unknowingly by Checkraised.com's website to its customers' PCs. Rootkits are used by the designers of malware software to hide viruses or Trojans.
The virus was detected by Security Company F-Secure's rootkit detection technology, Blacklight. The software installs 4 executable files into your computer and uses the rootkit to hide its presence.
The virus then records your passwords and the executable files then allow the hackers to enter your PC and take your user names and passwords.
The hacker can then use your passwords to log into your gambling accounts online and play against himself, purposely loosing all your hands and in effect steal all your money.
As soon as this was discovered Checkraised.com immediately removed the program from its website and issued a statement apologizing and explaining how to remove the virus from your PC and telling its users to change all their passwords ASAP.
A researcher at F-Secure's data security laboratory, said: it is only normal to expect people to use the popularity of online poker to try to steal players money.
The worst part of this attack is that the virus was hosted on a legitimate poker site even though they knew nothing about it.
Malware authors are usually very knowledgeable of standard anti-virus and intrusion techniques and are constantly looking for a new way to exploit them. Having the standard Anti Virus software would not have protected your PC from this attack.
F-Secure is advising people who has visited Checkraised.com site to go to the F-Secure website and use their free online software to check to see if your PC is infected with this virus.