If you’ve picked up a TomTom GPS over the past few months, you may have bought more than you bargained for. TomTom International confirmed Monday that some of its latest GO 910 devices have shipped with a virus preinstalled.The infected systems were all manufactured during a one-week period around October 2006, TomTom said in a statement posted to its website Monday. The affected systems are running version number 6.51 of the TomTom software.The company didn’t say how it managed to install malware on its products, but it warned that infected versions of the GO will try to copy the malicious software to a PC, when connected. News of the infection was first reported Sunday on Daniweb.com.TomTom rated the malware as “low risk” and said that it is detected by many antivirus products. A “small, isolated number” of systems are affected, the firm said. Infected GO 910s include Trojan horse and virus software that has been blocked by antivirus vendors since June 2006, said Roel Schouwenberg, a senior research engineer with Kaspersky Lab.One of the files, called Backdoor.Win32.Small.lo, uses the Windows AutoRun feature to try and make Windows run the other malicious software on the device, once it’s been connected to the PC, he said after examining the malware. TomTom isn’t the first company to make this kind of mistake. Apple accidentally shipped malware with some of its iPods last October, for example.The malicious software often gets installed when an infected PC is used to test or configure the devices, Schouwenberg said.However, the fact that the TomTom malware had been known for months when it was installed on the GPS devices reflects badly on the company, Schouwenberg said. “We found the malware in June,” he said. “It means that someone around the product line is either not using antivirus, or they’re using bad antivirus.” -Robert McMillan, IDG News Service Related content news Okta launches Cybersecurity Workforce Development Initiative New philanthropic and educational grants aim to advance inclusive pathways into cybersecurity and technology careers. By Michael Hill Oct 04, 2023 3 mins IT Skills Careers Security news New critical AI vulnerabilities in TorchServe put thousands of AI models at risk The vulnerabilities can completely compromise the AI infrastructure of the world’s biggest businesses, Oligo Security said. By Shweta Sharma Oct 04, 2023 4 mins Vulnerabilities news ChatGPT “not a reliable” tool for detecting vulnerabilities in developed code NCC Group report claims machine learning models show strong promise in detecting novel zero-day attacks. By Michael Hill Oct 04, 2023 3 mins DevSecOps Generative AI Vulnerabilities news Google Chrome zero-day jumps onto CISA's known vulnerability list A serious security flaw in Google Chrome, which was discovered under active exploitation in the wild, is a new addition to the Cybersecurity and Infrastructure Agency’s Known Exploited vulnerabilities catalog. By Jon Gold Oct 03, 2023 3 mins Zero-day vulnerability Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe