Microsoft threat report sees spike in rogueware infections
Thursday, June 11, 2009
Microsoft said infections by rogue security software, called rogueware or scareware, spiked dramatically worldwide in the second half of 2008, in the latest security intelligence report from the Microsoft Malware Protection Center.
The company updated its Malicious Software Removal Tool (MSRT) in its regular security updateon Tuesday, along with 10 security patches for a record 31 vulnerabilities. The updated MSRT adds detection of a rogueware program called Internet Antivirus Pro, or Win32/InternetAntivirus.
This rogueware is similar to other rogueware programs in that it attempts to scare users into believing a virus has been found on their computer. The program runs a fake anti virus scan that detects fake viruses and asks users to purchase the phony anti virus program.
The program downloads malware including a password stealer called TrojanSpy:Win32/Chadem, Microsoft said on its security blog.
Win32/InternetAntivirus also installs a program to display messages in the browser, such as a bogus Windows Security Center. Internet Antivirus Pro shows up in the fake security center pop-up, identifying the rogueware as "unable."
Microsoft said software infection rates in the second half of 2008 were much better for users of the latest version of Windows Vista, which was 60 percent less than that of Windows XP.
Related News:
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
Report: 'At least 34' firms attacked at the same time as Google - 1.15.2010
The Washington Post asserts that many U.S. companies were targeted in the same network security and email breach that affected Google and provoked the company's highly publicized spat with the Chinese government.
|
