Posts Tagged ‘Credentials’
August 29th, 2010 | 
Author: 
Despite the consistent media exposure that FAKEAV malware receives, it has always been business-as-usual for the FAKEAV proponents. To find out why the notorious malware persists, Trend Micro researchers looked into three important aspects.
These include: 1) social engineering techniques; 2) FAKEAV technology; and 3) the FAKEAV business itself.
Social Engineering
Social engineering is a technique prevalently used in furthering malicious activities both online and offline. Online, however, FAKEAV is a good example of a social engineering success story. By leveraging human weakness, FAKEAV effectively utilizes social engineering techniques such as “Black Hat” search engine optimization (SEO) to trick users.
The Technology Behind FAKEAV
Behind the professional looking GUIs, annoying pop-ups and other scareware tactics used by FAKEAV lies a simple technology. It can thus be said that FAKEAV technology is more tricky than complex. Despite the relative simplicity of FAKEAV technology, however, it plays a critical role in the success of FAKEAV’s social engineering tactics.
The FAKEAV Business
Of course, a malicious campaign is meaningless if it does not benefit its proponents. When it comes to the FAKEAV business, the stakes are high. Apart from taking away about US$ 40–100 from a user’s account as payment for rogue software, the more pressing concern with FAKEAV is information theft.
Learn more about the persistent FAKEAV and its three fundamental aspects with Security Spotlight article, “Why FAKEAV Persists” [.pdf].
Post from: TrendLabs | Malware Blog - by Trend Micro
The Persistence of FAKEAV
Posted in Uncategorized | 
Tags: 1 Billion, 6 Digits, Adobe Flash Player, Adult Content, Affected Systems, Annoying Pop Ups, attacker, Attempts, Autorun Inf, Backdoor Programs, Backdoors, Bad Guys, Badness, Best Guess, Bifrost, Billing Statement, black hat, Blackhat, Blackhat Seo, Bonus, Botnet, Bp, Bp Oil Spill, British Actress, Business Users, Clue, Code Execution, Communication Channel, Competitions, Compromise, Confusion, Craig, Creators, Credentials, Credit Card Information, Credit Debit, Criminal Underworld, Criminals, Critical Role, Cybercriminals, Daily Basis, Debit Cards, Dedication, Defcon, Dela Vega, Dns Records, Dns Settings, Email Account, Email Accounts, Email Addresses, Email Contacts, Enter Key, Executable File, Existence, exploit, Exploits, Explosion Rocks, Explosions, Explosives, facebook, Factory Default, Flash Memory, Followers, Football Match, Forgery, Free Web Hosting Sites, Fundamental Aspects, Gaza, Hassle, Heffner, Holly Davidson, Honda, Hostname, Human Weakness, Implementation, Independent Researcher, Information Theft, Initial Price, Instances, Interesting Fact, Internet Activities, Internet Hoaxes, Internet Tutorials, Investigations, Ip Address, June 21, Keen Eye, Key Role, Lenovo, Lnk File, Lnk Files, Localization Techniques, Magnetic Strip, Malicious Activities, Malicious Files, Malicious Programs, Malicious Purposes, malware, Massive Explosion, Media Exposure, Medium Sized Business, Mel Gibson, Memory Sale, Microsoft Office, Microsoft Windows 2000, Minded Friends, Mms, Network Accounts, New Malware, News Flash, News Reporter, Nickname, Nikkon, Office Xp, Official Forum, Online Games, Optimization Seo, Os Users, Outlook 2002, passwords, Pc Manufacturer, Personal Identification Number, Phone Number, Phrase, Pin Code, Point Of Sale, Poison Ivy, Pornography, Pos Hardware, Pos Terminal, Potential Victims, Ppi, Prc, Previous Versions, Profile Company, Proliferation, Prominence, Proof, Propagation, Proxy, Pub In London, Public Ip, Python Libraries, Python Script, Query Results, R2, Random Code, Real World, Reality Tv, Receipt, Recent Developments, Relative Simplicity, Removable Drives, Researcher, Rogue Software, rootkit, Router Password, Russian Origin, S System, Sancho, Scams, Scooter Honda, Search Engine Optimization, Search Engines, Search Keywords, Search Terms, Security Bulletins, Security Conferences, Security Spotlight, Security Updates, Send Spam, Sending Messages, Service Pack 3, Shortcut Files, Simple Technology, Sms Content, Social Engineering, social networking, Social Networks, Sole Purpose, Sp2 Systems, Spotlight Article, Stealth Capabilities, Subdomain, Sunday Afternoon, Support Materials, Swipe, Tcp Reset, These Patches, Time In Moscow, Tool Kit, Top Internet, Trend Micro, Trick Users, Tv Celebrity, Tweets, Twitter, Two Windows, Unauthorized User, Underground Forum, Unpopulated Areas, UPS, Urgent News, User Names, Variants, Virtual Currency, vulnerability, Web Hosting Sites, Web Page, Web Server, Web Side, Weird Concept, Windows Security, worm, Worms, Youtube, Zbot, zero-day | 
No Comments »
TrendLabsSM recently encountered a phishing email specifically targeting Standard Chartered Bank clients. The spammed message instructs recipients to log in to their online accounts and to visit the Secure Messages section to read a specific message. The email body includes an embedded link, which when clicked leads to a phishing page.
 |
 |
The use of bogus login pages has become a typical attack vector that phishers continue to use. Similar phishing attacks via spammed messages have been documented here in the Malware Blog:
- Phishing Pages Pose as Secure Login Pages
- Caisse d’Epargne Customers, Beware!
- Citi Prepaid Phishing Services
While this is an old trick, clients who visit the page may still unwittingly provide their bank credentials to cybercriminals’ waiting hands. Users are then advised to constantly exercise caution when opening email messages and when clicking embedded links. Standard Chartered Bank likewise reminds its clients to be wary of the reality of online threats, including phishing attacks.
Trend Micro™ Smart Protection Network™ already protects product users from this particular threat by preventing the spammed message from even reaching their inboxes via the email reputation service and by blocking access to the phishing site via the Web reputation service.
Non-Trend Micro product users can also stay protected from malicious URLs by using one of free tools like Web Protection Add-On, a lightweight add-on solution designed to proactively protect computers against Web threats.
Post from: TrendLabs | Malware Blog - by Trend Micro
Phishers Send Out Standard Chartered Spam
Posted in Uncategorized |
Tags: Bank Clients, Caisse D Epargne, Caution, Credentials, Email Clients, Email Messages, Free Tools, malware, Micro Product, Phishing Attacks, Product Users, Reputation, Smart Protection, Spammed Messages, Standard Chartered Bank, Trend Micro, Typical Attack, Urls, Vector, Web Protection |
No Comments »
Cyber criminals are offering an online service that claims to be able to hack any Facebook account for $100. The site, uncovered by IT security vendor Panda Security, allegedly provides clients with the login and password credentials to access accounts of ordinary people, as well as celebrities, politicians and well-known companies.
Read the rest of this entry »
Posted in Security |
Tags: Accomplice, Celebrities, Credentials, Cyber Criminal, Cyber Criminals, Entities, Fraud, Hack Attack, Hackers, hacks, identity theft, Intruder, Moscow, Ordinary People, panda, Panda Security, Personal Data, Politicians, Security Vendor, Western Union |
No Comments »
