Millions fooled by 'rogueware' fake antivirus software
Thursday, July 30, 2009
Cybercriminals are earning nearly $34 million each month from selling phony antivirus software called rogueware or scareware to unsuspecting PC users, according to new research from web security firm PandaLabs.
PandaLabs researchers said the rogueware class of malware has become an instrumental player in the overall cybercriminal economy, as cybercriminals have begun to distribute rogueware via Facebook, MySpace, Twitter and Google.
The researchers said the growing variety of rogueware programs has led to roughly 35 million computers being infected each month.
"Rogueware is so popular among cybercriminals primarily because they do not need to steal users' personal information like passwords or account numbers in order to profit from their victims," said Luis Corrons, PandaLabs technical director.
Cybercriminals have been creating new varieties of rogueware in order to avoid detection by legitimate antivirus software, PandaLabs said.
Rogueware typically spreads by luring web surfers to malicious sites rigged to display a warning to visitors telling them their PC has been infected by a virus, often using a fake scanning program to detect non-existent malware.
Recently, researchers detected spam email promising free downloads of the latest Harry Potter movie. When users visited the site, they were told they had been infected by malware and were urged to buy a phony antivirus product.
Related News:
Conficker still a threat to web security - 3.18.2010
The Conficker worm was by far the most notorious piece of malware in 2009 for several reasons. Not only did it receive media attention and infect more computers than any other strain, according to Katonda, a business technology website, it reminded web security professionals of bygone days when major epidemics were the norm.
Network security update not responsible for crashes - 2.24.2010
Reports of the so-called "blue screen of death" following the installation of the latest Microsoft security update are the result of malware, not a defect in the update.
Botnets and Chuck Norris take aim at network security - 2.22.2010
Last week, word spread of the Kneber botnet compromising more than 2,000 computers worldwide. With the start of a new week comes more malware attacks plaguing the web community. The so-called "Chuck Norris" botnet is attacking routers and DSL modems by guessing commonly used passwords.
Web security company warns of scareware's risk - 2.19.2010
The rise in scareware attacks and cyber criminal behavior in general forced DynaSis, an IT services company, to issue a warning to its users about the threat of fake anti-virus software infecting their computers on Friday.
Age-old trick with brand-new target - 1.18.2010
Cyber criminals have turned to a scam from the early days of the internet to target the growing smartphone market: Trojan phone dialers.
|
