Search
Virus Protection

PC Tools Spyware Doctor w/ Antivirus v6.0 FREE DOWNLOAD and VIRUS SCAN      Stopzilla Download - Get Rid of Spyware, Viruses, and Adware Today!

Sneaky fake company virus warnings trick users into installing malware – Naked Security

October 11th, 2011 | Author: admin

Malicious emailPicture the scene.

You receive an email from someone inside your company. He tells you that there is a virus problem inside the company and it has resulted in data being stolen and some files being deleted.

You are told to install an anti-virus tool to clean-up the infection properly. The link appears to point to a download on your company's own website.

Would you do it?

Well, hopefully not. But people less savvy in security matters might be fooled.

Here is the email that has been spammed out to a number of large companies (click for a larger version):


Malicious email. Click for larger version

Subject: IT Notice

Message body:
Dear all,

Just a quick alert to let everyone know that our company have experienced a new kind of virus to web space and personal computer. found that the computer system information leaked, such as in other server information is moving, a few files deleted. Expert written virus removal tools to help us fully remove this virus, Please download and install the patch, obtain virus definitions, and run the removal tool.Download the tool from: [LINK]. Please Back Up Your System Databases, If any questions, please do not hesistate to contact IT department.

Although the link appears to the naked eye to point to a file called antivirus.exe on your company's own server (for instance, if your company's website was called example.com it would appear to link to www.example.com/download/antivirus.exe) it really directs your browser to a download on a third-party website.

In this way it tricks you into believing you are download an approved anti-virus update from your company's IT department, but you are really fooled into installing a Trojan horse.

Sophos anti-virus products detect the malware as Mal/Generic-L and Troj/Inject-QL.

The bogus email says (in rather poorly written English)

"If any questions, please do not hesistate to contact IT department."

Well, that's precisely what you should do. If ever in doubt, check with your IT department whether the advice you have received is genuine. They'll much prefer you double-checking than you putting the network at risk from malware infection.

This entry passed through the Full-Text RSS service — if this is your content and you're reading it on someone else's site, please read the FAQ at fivefilters.org/content-only/faq.php#publishers. Five Filters featured article: A 'Malign Intellectual Subculture' - George Monbiot Smears Chomsky, Herman, Peterson, Pilger And Media Lens.

Posted in Computer Security

Comments are closed.

RSS Virus Removal Help
  • Zlob Downloader Trojan
    Do You need help with the zlob trojan virus? Here we have compiled a little info for you about the dangers and effects of the computer trojan, and also have resources for removal tools. […]
  • Smitfraud C Will Hijack Your Background on Your Computer! Read This to Stop It!
    Has the image on your desktop changed to something that you are completely unfamiliar with? The virus known as Smitfraud C could be the cause of something like this. We have the solution to your problems! […]
  • Need to Remove Zlob? Read This First
    Zlob is no joke, and it can be a huge hassle to remove. If you have downloaded on your computer you will want to remove it quickly and have some sort of protection to keep it off. Read on for some tips and resources that I recommend... […]
  • SmitFraud Removal Tool - Know What is Real and Fake!
    Do you have smitfraud and a program called SmitFraudFixTool has been bugging you to download and buy a program to remove the Smitfraud Downloader? You Need to read this article to find out why this program is fake! […]
  • Virtumonde Virus - How Do I Remove Virtumonde Once and For All?
    Virtumonde is a horrible and very aggressive computer virus that is prevalent online today. If you have this virus you need to remove it as soon as you can to stop serious PC problems. […]
services
Virus Removal

Contact Us | Privacy Policy
Copyright © 2009 Win32 Virus Removal | All Rights Reserved | Jade Theme by dkszone.net

Powered by WordPress

Powered by Yahoo! Answers