Sponsor for PC Pals Forum

Author Topic: You're infected so pay us to get infested  (Read 849 times)

Offline Clive

  • Administrator
  • *****
  • Posts: 75152
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
You're infected so pay us to get infested
« on: December 21, 2005, 17:37 »
Spyware spam scams dissected
By John Leyden
The Register
Published Wednesday 21st December 2005 09:39 GMT

Spyware spreaders have stepped up attempts to trick users into downloading malware using a combination of browser vulnerabilities and deceptive spam emails. In particular, bogus warnings about infestation are frequently being used to dupe Windows users into accepting potentially malign code, reports security vendor Websense. In many cases, these scam emails also request money in return for "fixing" supposed security problems that don't actually exist.  

Such social engineering tricks represent a common-enough spyware scumbag ploy but Websense has identified a number of common factors within attacks launched over the last fortnight. Many of the sites involved in these scams are hosted in either the Ukraine or Russia. Their domain names are registered in countries such as Vanuatu and Mexico. Code downloaded from these sites often includes several pieces of spyware, adware, and other potentially unwanted software. Removing any of this software often forces users to fill out a survey.

The same IP netblocks associated with these nefarious sites have often recently been used to host malicious code such as Trojan horse downloaders and host-file redirection software, Websense reports. Furthermore, IP netblocks of these scam hosting sites are often hosting other questionable sites such as fraudulent search engines. Several of the 1,500 sites analysed by Websense contain links to other sites that are hosting IE exploit code.

LINK


Show unread posts since last visit.
Sponsor for PC Pals Forum