Video of a fake anti-virus attack

Filed Under: Malware, Video

Following the video I posted earlier today demonstrating how criminals have planted messages on the Spike website linking to pornographic and malicious attacks, here's another movie.

(Enjoy this video? You can check out more on the SophosLabs YouTube channel and subscribe if you like)

This video, made with help from Dmitry in our Vancouver labs, demonstrates something that Fraser Howard recently blogged about.

In the video you'll see how an innocent-seeming Google search (in this case for a recipe for snickerdoodle cookies) can take you to a website that then will assault you with fake anti-virus warnings (also known as scareware or rogueware).

If you fall for the bogus alerts you might be tempted to visit the professional-looking bogus websites which pose as legitimate security vendors. These sites are increasingly professionally designed as you'll see in the video below, and every day we encounter five such new fake vendor websites every day, with the figure rising to over 20 a day on occasions.

Of course, if you fall for the confidence trick and hand over your credit card details for a "solution" you're playing right into the hands of the criminals.

There has been a huge growth in scareware during 2008. According to the Sophos Security Threat Report we published yesterday, the bad guys are spreading scareware not just by planting it on websites but also by actively spamming it out in emails to people. Indeed, in just one of our spam traps, we recorded an average of around 5000 such emails each day.

,

You might like

About the author

Graham Cluley runs his own award-winning computer security blog, and is a veteran of the anti-virus industry having worked for a number of security companies since the early 1990s. Now an independent security analyst, he regularly makes media appearances and gives computer security presentations. Send Graham an email, subscribe to his updates on Facebook, follow him on Twitter and App.net, and circle him on Google Plus for regular updates.