Sonic 2 HD has a keylogger. In case you don’t know what this means – whatever you type may be recorded and sent to a remote host, and yes, that includes your bank account details or any password you may type – so it is recommended you delete it immediately.
The software was flagged by anti-virus softwares and the development team also confirmed it and released a public service announcement.
Earlier today, I was contacted by a professional antivirus employee who was interested in why Sonic 2 HD consistently popped up as a threat by multiple antivirus software programs and did some investigation. His results showed that a keylogger is part of the Sonic 2 HD software. After receiving this notification, we conducted our own independent tests and found that there is indeed a keylogging program as part of the Sonic 2 HD alpha software.
I want to emphasize that at this time, we have found no evidence that the software has been “phoning home” any data-only that we have found the capability exists.
Because this vulnerability has been found, we are strongly advising that the software be removed. You will need to delete the files included with the Sonic 2 HD zip, as well as the registry keys hooked at HKEY_CURRENT_USER/Software/NakaSMK (if you are unfamiliar on how to do this, go to Start->Run.., type regedit, follow the folder path, and then delete the NakaSMK folder.)
We will have more information on the situation as it evolves.
This is completely unprofessional and whoever is responsible should own up immediately. It cannot miraculously be in the program without any outside help. Please uninstall the program in case you have downloaded it on your PC.
Via Kotaku.