« Book Review - God- or Gorilla?, Chapter 17 | Main | Book Review - God- or Gorilla?, Chapter 18 »

Beware the Scareware

Scareware Screen CaptureAs the IT manager where I work, in the past couple weeks, I've had to clean two computers with a 'scareware' infection, as well as a website for another company which had been hacked to host scareware. Since these types of malware seem to be on the rise, I sent a note to the employees of the company to warn them to be careful of these types of infections, and figured I'd repeat that here as a public service.

Scareware infections usually come from compromised websites. The site will load a page that looks very much like a legitimate antivirus program, with fake messages about the computer being infected or a virus trying to run, tricking users into installing the malware on their computer. Once infected, these programs are very difficult to uninstall, and will usually block legitimate antivirus software from working. The main purpose of these programs is to scare users into paying for software to clean the supposed virus infection, but some versions will also install viruses or password stealing malware.

If you're browsing the Internet, and you get what looks to be an antivirus program warning you of an infection, chances are that it's scareware. Do not trust any warnings about infected files on your computer unless you're sure they're coming from your already installed anti-virus software.

Here is more detailed information on these threats, including a slideshow with some known examples.

Also, do not assume that these attacks only come from disreputable sites. The majority of sites with scareware are legitimate sites that have been hacked or which have security holes in advertising. These include large, popular sites such as Sony, so exercise caution at any website.
http://www.websense.com/securitylabs/docs/WSL_Report_1H08_FINAL.pdf

If you happen to use a Mac, keep in mind that criminals have expanded to targeting Macs as well.
http://www.computerworld.com/s/article/9216335/Fake_security_software_takes_aim_at_Mac_users

Posted by Jeff on Monday, June 6, 2011 |

Post a comment


TrackBack

TrackBack URL for this entry:
http://www.jefflewis.net/blog/jlnet-tb.cgi/412

About

Learn about me and the blog at the About page on my main site.

Also check out these links:
Official Disclaimer
Official Commenting Policy
Putting This Blog in Perspective

Recommended Reading

Search


Categories

Archives

Support My Reading Habit

Amazon.com logo
Use this link to shop from Amazon just like you normally would, and I'll earn a commission. It doesn't cost you anything extra.

Selling Out



Subscribe to this blog's feed
[What is this?]