Rogue

Scareware Industry lull

by certifiedbug on August 3, 2011

in Scareware Rogues

Another great article from Brian Krebs.

Fake Antivirus Industry Down, But Not Out

Many fake antivirus businesses that paid hackers to foist junk security software on PC users have closed up shop in recent weeks. The wave of closures comes amid heightened scrutiny by the industry from security experts and a host of international law enforcement officials. But it’s probably too soon to break out the bubbly: The inordinate profits that drive fake AV peddlers guarantee the market will soon rebound.

http://krebsonsecurity.com/2011/08/fake-antivirus-industry-down-but-not-out/

{ 0 comments }

Backdoor Olyx

by certifiedbug on August 3, 2011

in Internet Security

Microsoft Malware Protection Center

The recent emergence of rogue security software applications for Mac demonstrates how cybercriminals effectively use social engineering techniques to manipulate users’ responses – specifically, exploiting user’s fear of revealing sensitive information such as credit card details. This scare tactic evidently works regardless of the platform. While financial gain is primarily the motivation that drives elaborate schemes of Internet fraud, a threat that appears limited and specific to its target raises interesting questions about whether this threat is on a mission.

http://blogs.technet.com/b/mmpc/archive/2011/07/25/backdoor-olyx-is-it-malware-on-a-mission-for-mac.aspx

{ 0 comments }

Rogue application spreads on Twitter

by certifiedbug on April 19, 2011

in Internet Security

Graham Cluley
April 19, 2011

Once again Twitter users are finding themselves hit by a fast-infecting attack, more commonly encountered by their Facebook-using cousins: a rogue application spreading virally across the network.

Thousands of Twitter users have fallen into the trap of allowing rogue third-party applications access their Twitter accounts, believing that it would tell them how many people have unfollowed them.

http://nakedsecurity.sophos.com/2011/04/19/unfollowed-me-rogue-application-spreads-virally-on-twitter/

{ 0 comments }

Fake anti-virus attack on Twitter

by certifiedbug on January 20, 2011

in Scareware Rogues

Graham Cluley

Thousands of Twitter users are finding that their accounts have been tweeting out malicious links without their permission, pointing to a fake anti-virus attack.

If you make the mistake of clicking on one of the malicious goo.gl links you are ultimately taken to a website which attempts to scare you into believing that you have a virus problem on your computer. You are then frightened into installing malicious code on your PC, and asked to pay money to disinfect your systems.

http://nakedsecurity.sophos.com/2011/01/20/fake-anti-virus-attack-twitter-via-goo-gl-links/

{ 0 comments }

FBI warns consumers about rogue security programs

December 16, 2009

Press Release December 11, 2009. The FBI warned consumers today about an ongoing threat involving pop-up security messages that appear while they are on the Internet. The messages may contain a virus that could harm your computer, cause costly repairs or, even worse, lead to identity theft. The messages contain scareware, fake or rogue anti-virus [...]

Read the full article →

MSRT November Threat Reports

November 24, 2009

Microsoft Malware Protection Center Out of these prevalent threat families worldwide, 8 are password stealers collecting online game credentials, online banking passwords or other user identities of users’ online accounts. 8 of them are fake security products or trojan downloaders for rogues. The MSRT now covers the following most high profile rogues o Win32/FakeVimes o [...]

Read the full article →

FTC Shuts Down Rogue Internet Service Provider, Pricewert LLC

June 4, 2009

Press release A rogue Internet Service Provider that recruits, knowingly hosts, and actively participates in the distribution of spam, child pornography, and other harmful electronic content has been shut down by a district court judge at the request of the Federal Trade Commission. The ISP’s upstream providers and data centers have disconnected its servers from [...]

Read the full article →

advancedprotectionscanner.com et al-rogues deployed

March 22, 2009

The Russian Business Network affiliate involved has established a front company, autonomous system AS48669 NTCOLO-AS NTCOLO, and has been allocated 510 unique IP addresses. AS48669 consists of 105 malware domains, 19 domain name servers, 8 mail servers and 3 fraudulent payment processors. List of current IPs Secure Home Networks

Read the full article →

Drop for Rogue ‘Internet Antivirus Pro’ Gotscan, user4scan

March 16, 2009

Redirect from gotscan.com to user4scan.com. <– Do not go to either. Received typical scareware warnings, rogue was not detected by my anti virus program. The installer repeatably failed, popping up the same windows and freezing the browser. Domain Name: USER4SCAN.COM IP Location: Germany – Berlin – Berlin – Netdirekt E.k Registration Service Provided By: SELLOUT.NAME [...]

Read the full article →

New Rogue XpyBurner

February 9, 2009

Scareware Spyburner becomes XpyBurner. From EULA. C. Some of our products may be unsuited to run with other software. We have the right to uninstall incompatible products. We will notify our customers before uninstalling such products. A customer cannot claim a refund if the reason is a requisition or removal of conflicting software. Coexistence of [...]

Read the full article →

← Previous Entries