|
|
|
Symantec Reveals Rogue Antivirus Pulling Massive Profits
By: Brian Prince
2009-10-19
Article Rating:  / 11
There are 6 user comments on this Network Security & Hardware story.
Symantec took a look at the underground market for rogue security software in a new report. Some of the sales affiliates make staggering profits, with the top earners averaging $23,000 a week during Symantec's 12-month study.Symantec shined the light on the massive profits pulled in by rogue security software scams on the Web.
Such software, often referred to as scareware, has gotten more attention in the past year as scammers continue to enjoy success tricking users into shelling out big bucks. In a report titled "Report on Rogue Security Software," Symantec officials uncovered that sales affiliates were pulling in staggering amounts of money.
Creators of rogue security software typically use an affiliate-based, pay-per-install distribution model, Symantec noted. Among the distribution sites studied by Symantec, the affiliates were paid $0.55 per installation by users in the United States; $0.52 for installations by users in the
U.K.
and
Canada; and $0.50 for installations by users in
Australia.
While seemingly small, these amounts can translate into huge profits. According to the study, the top 10 sales affiliates for the distribution site TrafficConverter.biz averaged $23,000 per week in earnings during the 12-month study period of the report.
Scareware creators can scam thousands of people for comparatively small amounts of money all at the same time and make huge aggregate profits, said David Wall, a professor at the Centre for Criminal Justice Studies at the
University
of
Leeds, in a statement. This type of fraud works because the fake security software tricks users into believing they have an immediate threat which only their program can resolve. Ultimately, it's a con."
The per-installation-price varies from country to country based on the likelihood that users from that country will pay for the fake software. According to the report, 61 percent of the top 50 reported rogue applications were attempted on users in
North America; 31 percent occurred in the
Europe,
Middle East and
Africa
region; 6 percent occurred in the Asia-Pacific/Japan region; and 2 percent in the
Latin America
region.
The higher percentage of rogue security software scams in the top two regions is likely due to the fact that the majority of malicious activity in general is also in the
North America
and Europe/Middle East/Africa regions, Symantec said.
Many times, rogue antivirus scams begin with spam e-mails and a bit of social engineering.
Spam is an easy way to advertise rogue security software programs because it is relatively quick and inexpensive to send a large number of email messages, especially if a spammer uses a botnet to do the work, according to the report. For example, in 2008, spam for AntiVirus XP 2008 was sent out from botnets such as Peacomm, Srizbi, Rustock, and Ozdok. Email addresses suitable for spam are inexpensive, costing as little as $0.33/MB (with one MB containing as many as 40,000 email addresses).
Cyber-scammers also use search engine optimization techniques to poison results so that users are lured to malicious sites, Symantec noted. The programs are also advertised on both legitimate and malicious Websites, the report states.
The study is based on data collected between July 2008 and June 2009. During that timeframe, the top five rogue security applications in order of prevalence were SpywareGuard 2008, AntiVirus 2008, AntiVirus 2009, SpywareSecure and XP AntiVirus.
The findings of our Report on Rogue Security Software make it clear that cybercriminals are willing, eager, and well-equipped to prey on todays Internet user, said Stephen Trilling, senior vice president for Symantec Security Technology and Response, in a statement. To avoid becoming a victim of such predatory practices, Symantec strongly urges Internet users to make sure they are using the latest security protection and always obtain their security software directly from trusted vendors websites.
 |
|
|
�������x}r8s;�iW1ŋKm)[X*{c#� IlS|rbbq3��%R9[.["�2H$���|Iȹ3"�9)ٝfߧG,z�IÇ@�@e�ZNULrJ�Զn�T7n[#3�P/W�?`��W�᳙(,�Q � tjGt0]2h�Դ�k2"gvek/cߨ�Y:`&`1Z4�lR �j��9i�?xi-'@I�R(ӇCѺ��(D>�ߵ-m:��]'|w*U�n��p{#a_ʞ0�HQI�M"p8$j�>vn3�d�#B�=x?:a/M˟��خq�4]�b'*cO^3l�cㅰ��A-c�9p=�^-
G&lwrD�ƞICsd"�LJ^`:pm3��G^A]õ]��\.ϑRF�eCwt=S��źS]k�ԏPL0H��6=~0[� QM%$�7
��.lqO-%0/<{mo9{ۖ3{p*syÝ|5j͛Ͽvϕim.s$�(֝[`�mKIu]+h0��Ns#u<>s�i^_��D߀*�0QI-�I|/�Z@���=.gV}��j�] ty�[����j��٥zh$YS)2�!�,#�G�lWWngGW)wf٘Y�ji�ed�X�]2��,U5M}ҹ�9i^]d#t2 +?9VV'ZUoj�6O{:$>>LlrG=�����.iT%5�᧓qe�xy$Y)�IwqN��y[-t[�%wܻ��/Rx3o�f5
tA�[&%Ga "���:ur�Psڒf}�t�-n
#d��Lh��&άZ��h-@ho�*K���Lr5&@Sk~�$M�\5ņ]�)!ehNS{%/^(P%!P샖_.��
jF|*(If(;�/3�A.r)#�t� 6=aL+^9/4l�.k\G.כEsL�V�t];3yя0-*�<�Oޗ ^v�~hvOMxX18�,0]ev|`\�77�Jy?6�k_)Ab�/*r[�hc�2ud8��|���Ak'EL�lR�莓x�>:AGA�ticšhϬ@7��h`CZ=҉:L�����{ݣn]>&tfiXŞ�+LPZi`�Ik�E�6]�LR}>t�q�HhQ0<�sz0Y[�衟�#j{7t
t�,/��G`\@8)Hp�yY?����g>�o ��߃5�#z[-[�X6x�G͙A }R�P sZ.(�wc��2(%�E2G�� 4.gP)AH �=���� \��99z����|?#!bTLZ�'9Tt{B#�}Tz(�gR1eb -d[b�~I�l�
eV&vφa,[LboD��6�]�,�S�m3-M�us��6
��z`N�&3yje��Q#�U^/�w4-��r�Ό`�ϯ-/Aw��)�ioLI ?,xpo�aB?1bѪ)C=�=-f�
ӛm�S�Zԛ01M�,dk6q?:2`
M
l4�T f��FfO���~5lwfr�n9Y~rI�$з^s_o2ES�|(�n^ßf�1�d��_w\ճ&AB
�glCC�2{�ڡ[Z3R;=�=Mrʳ$�#��}_7�X>ťHN(m�t'�й+>q^t.i}mOӬX��UoE[�1(Ŀ�:R�j'-�H�o`��koռy_x�ui8Hi�-"�rB`}.,�y�6G�h�?4�0��Oi�vw�a=�5}n�w�V/U�W�C�xz#kjISʡ헫b1vn�g%�A qsG�Iݔ6 [IFlp
|�S �kQDSOX�<}:��L�lф0ې�t1�N(>F�TzRhjUՖL�-F�*�|��(
��+��)#�NWɅk?N/,{�isqMّ
w.j
d>j6 '�[ar�S��hfh:l�<}:8Hy¬5ѝ�_φRPIڏ9&�_G5�k�^��ˣ6Wеm>2躢G�Ʊ4St%ra9�h��9&
րziDe�,Za'�
#�ؚðys/}kьV�4:E�80�Ge�f+[ꭦ'�T+�pzۻ(�Sܧ&�;alâ�#_-��C���2$6/Pk�
.a@C����)& SZ`\FL�k��
ZCbP$܄wц.�[|X�]OXL�+*�9K.pϟ��
sFWyQFfY?K�yT+BZ'VVR尨V*�h�!*(Si)5�ɾ;��c>x�}ˬ5�_>k�{]öK.G~g^/l^��cv"O`��R$-p2HU>Y�}`/�cҧ8@�ĺU0�UESUG�+[+^>�F����]h��!.��־1�X@�P A6+8SӞ-jXX�RO�-x�zVGc�'ԿE���XӦm?QeW᧘TVQqi?r;h跸�@^5h8`Ȍ�)Ĩ�5UW�*~iZ'5^�_mhDA��`��
Нv;#ؐCKA;aVS$_o�|렀6RaExތ�9"yea@WIl��J�hLw?o�_�/Qm(}�g<4y�nU
֕/Ǐec<�M-�`�%g\U+h�{9A[B, �r?_'uG "B�7x^mx�P@<�ৣjZ)sƗɘBÜbK�>�AM:Kl30Uf�fyr;WKU05Vu
2
\����l*�Uc�2~��:i�1-aNx[2|'@�d���Ѫ�93��NQFg�f>ra;9Qo@Homs11� Z�H$;QOHg�~F85 zS))r�*H+ů �3Fˁ;�_g.4&QX�x}GTUO5ỵV1C�e
4v=.E�Ћr}c�LB.M�o
4y�QZk�oZ,+eeP��/)
JU-��A^Mo6=IT\QGQ�>2�yIc#&�a\ixmb=Z"ZR4�
Jz7Ϣ
Cڝ�[M�2B�0qVЦ-p}�/O&PFzM��q4wI#⩬yF0.Ɨ��s�kg�G̦:z�fS6{%]M;oW���Tmf?ºe$q`�\&LX�u �Z:L�T)�OLJZZ$|p`���F�t"qT"N*'�!UOW/�u�a}dz�LR(��!I�]�0|̮�Vta؆Λ0BF@�IDW:^Bh\}jŗt;+~JM)�^s)z0�&8o}j�'d�0|
s|l\�6b�W�`
xѤ8"cxH15^��6�"B
@�tNWY0z.B3ZMUc z
A0�W8�
?vO1Okw��tE�h[(+��h,�6dsJ;uM:{d�Nlp
j`ySrg�F�4/�E/p�]Z�insݼ�N9 c4�qJh"g�:�Q�;�?m[ħ{�,�/䎡�=�;SL�$SQ(�4iQ�-uyj�tJ1SBW}3kyR̵jПd�Ǟ;%=ꐞ5e �(iюO+E֟ڷN)ϧ)���Y;���2�ia-o��9
EG}:�m��!r'GJz0VU�5?Ó�8C�(tV@�ni!Ý,e;j~[d�rV*$Pr; G��Q��1BqU�@qޝF�Б9��3 V,�9P,Vr0,�3D'(�$WD'9~/n!��*:f<{.���YMhkl�T�t goik�NSuL��1�Q4U�}(|BS"��*/
LU~b,Vb�MBJ^I?y E
^\V�+{�)ܜId}�g�*U�j)N4{$J+�1"$^y�5U�٧�B%rDyd]ni/o)�<�߭ē\�!`�eݦ^зSg�1,��$�%�z�\o?/:\g�GBf&K@Z�fd�'PBbKQ��;A<ݩj{IlȤ�x�z@]��DCY=�Pbr0�NjD��6��`�_��!ں�q
�/UR<�ۙ-�
P�0$�'�I�ȹ�(>w_9-L)L"I"���.]�8[''�ept�A>tG:rG@��,_:FRxTJ<�_{8��qÚAB3� E�RW�+1`�"1Mkn4JA
2MPHH�L@�K-*Rx�T¼,GX*�T��O�x�9�$�7^T�j�zԟҶ*L4eSn,�76? v
2�B
/Y��*J�q ��@��I"�AYۖ$!56Ża'LrT�[D;cI�N$�o\,iMmF�/�ɉޮ�ۆ��&"Rݔ/eW]Xe4�Qݓ:, fC*݈ ���p��A�>x6!7f6½M
y�qWVF�*逶�#f2$�~�H�Ptq*R{\Xd�?�'}ҝ?g�vm\9{.H7�{7VO~k͚O0Dn%FU%D�'[Ju�(q?swNw`�Kou 7:Dx�,��%i6?K�ݾj�_9�I71g0� �C�@�H��B�Ge��Ml|}گ(\&�
�zq|l]]V(��&A���˨cqs�(�@oLO<.цؖto{�����F0�aRn
b@Q� <$�Ƌp G�AE8OH/~k�eLFRK,bL#�auP`��$�c 5�{7^U{A��\�p=z�'p=|7/z�tY���³N�;w6VI?D}q
˥{ѷݑۯ��^Œ#wb(`% +lx=իO�{&`lLݩnmUo�x ƿ2KrW|k�fN�_d�+snz�TZ3h�~�LglVK6.{�M_r��&`6�l�j�V���A(/W-~ӧS�@VE[6bĽ�g4a�cFN;s�݃��yG�¡YIj|ubE$t86o�g�&e�l?��Q�X2}�A���KfR��כ�aưyS,�Y�KW11\R�Q.\iE,�zVdqK2&�/ #z�Щ>��3&�ME�*ރ0H�R�&Ǣ;@JVH4iⳌ/Zj>k�`ms̴5̈
Zk�a�f�Zkﵮ�u3di<1E�7�Zzڝ�Z<�hfUj"?o?uv7=���VE�8a�ߦ#qR3Hz��A���lMᗚk烔K�p-Cף6:�̽OdsMD0FU�2�j�i�'\YjJE�U0=j��eo,�V
>�l3J4r��Hy3P=ze�c=�Hmy1Yy��r
ُd� �K�^=kO]d�O�}TK[TI`o2b_��g\-� ���0eˡW�qb\o7�j�W�w�^:]{L�Z�! Į� CE^a��᷍�_�khۓ��OW�D�]%F�R)Ռ�t)@P\�ׯ0OļX\snOa.=ƸaXYrVfjh
ͬͱ-j%!F㬤�9�fSAx�3�}$g;� ���@$)5,�?_J }#VQ�^oD�~h#nO5�}Q�rEu��,ݿLt1ц]1�-'|ɈVs
%.N=�OcB|ж�@>�+p��S C7R�,6$Ae�5T?�0Խ�
)�0kȚX�/�J 7�V�mm���tDG`߄w��8��:{WZ=#FO�d�>���pXHґu
/#a�<$wz̥7d?= [N�8}�oǃ"Ba=X 2>Io��Hp"4O]�U#
`�xK(��zC�~hIy=ozͫ.zxX�2`�LG�Xța@S$����Ds�c�3z�9asH ]TW\A&xO=&�n O�]@wV�Z�؟
ްn?Eo8f+H� s ;'@i �$G_$ F�K1�tQ:..�(�� o�I�[Pk,(ω�B5Ou�SJTmn$|�s�ޑ719̈́�c�,Y�u�A"�\2,�GL��we~d@M<��2�LՀk;λ]-AG,G71=�` ?#غ9�P0}(�-Ō��CZQJФ*�!dW`ǪZJ�WuG^ߧx[4n?=4W
)WPx����r#CvFC�d2=`�f�m�S>4./Ͽ�iӫft�uZVM��uy9I+ťW�*7YKxM}%ks[J1nv�d}�G{1>2�y&��e���^>&c����˼$=)>w�槤I��x崝#&JR7喛O'i��kr(%s<2g.�g}=*
t�=}}2HD1�K�AB0_w��ݣ,O�;Hߪe�xĻˏ�e�ݞ܃�8}��n}vяϻ]O^Z-~k�O��W�=M��omG;yh#V2"T_�;Yo�[췡^�cPS$dȪ9�(H�"7�<�R9Ô)螩�z(oF
[s�qg#�uo��Hn:�H墦�
V˕R;qG+B"ð���{{©ITMV�YI2ZY/�+��PP�फ़��h�[iR�o視��y�Vi8a�n%[z?�"z5��~L@,1k"ѽ/c�A6of.3^8��6սD<�gU~ o2P�e ��S��b�b;ˈTbTlJx)33[-|LZAÆoޞ�ٕv"n�,4w�z:
e��_X&58W�!��7c�U�ݡQ�GC1<:^x-Q�� fO�-=u=�23M{:�\x| "e*sE`!�fY-Nؒ1b�QSRۨWy�ɑtt�[���;$}�F(r!>p��^��D�`ˋiBЗ��tm�ܻ-O5�X�?�ap��b2�
B�%_ ީ�n'Qg�
̸Ʈlc��8Ï }Cqzvtsұ
Ea��qg�A?��"�d`Q�-qIlt��c̈́:&]P�O"Kw`/&�ܯ�.;4m>F26�q?Ih"v]"6
�R�Ň%?13{`7~t@..WgI�39L$�&��^[�>KcdBc M�=� o��9��~rh`=E('a�O�ao5RFX][�i]2Qh]Ku�o�n%>(}#K�m��^Gz�1>�Iϐ�R0+1 F�A��}F�^�� )4�eMf@g^l(VxRPbNme @b
S%JU�^n
=c,5�b9?���"ㅰxo!�Z^y�|XT��,sD��?�>K:�1U)֜��/gз��dm��?'6}Fu;�Kx�"��|0�j;;�1�Te]XQYɶ��z
S�O^7'[nA5�y`�C�24a)�zc<�9z�nG}����cHPWFϗݜ����Xo|
8l�O.�dZrM}olI
��O��]f?<+1��<&`#��]��&�\f��\j_&H�.�Ѯ\Tvbbq�Y9g;I��5w<#Q��*Ԯ-^g
͜5ŧ�W<߶RP+jdVw@8l:�ؖ?^
cϓp�%� `�:�Vږ+zYL1e~}=3�ӲG(q�<,@P��z%`y��@4�4�
8ǩk[mx4;�~{롗B\
(a��t L/Qa˟]�lہP#jȅ-`�j+�7DmEtA���{|��?y�j燸[
0tczN﮳|�/ON7p2$82��[aq�1r嵖I��;;a0��&iE-㨤t`C
v�_ʉ~ph[�҈Y>A� wVǰ��ev?,U9sm�jWW6x�ozc|>[zw0�XjPwL1�,X�+0_�k��Ack�LeU��|t�GYEL`&;]+�N%t&vж?g8�هl*~��&/"�l{k+�нTnxFK-^P?Q�>�χ"@�TNENE<<�Sf )VSL_Xџ�_<|:T+w\�ƕyz�@Xqө8Yo~7�.[��ByiE��$3uG��?;��ot[6ˌ�hT*.㉋oOg%ǝU���nңOW/�)h,=R$DI3
AHc.�''dEg_0�m\}!l4�n_!����eTU�A$摭7yM1�uc*d_)V��]jq۩�g۰M�*d.%r�R�⒫�+EiQ}"'
Cf'R܄;6�6BKFslx�6�1��^{*��
|
Network Security & Hardware 
