Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cloud
    • Cybersecurity
    • Networking

    Cyber-Criminals Peddling Fake AV That Looks Very Much Like the Real Thing

    By
    Fahmida Y. Rashid
    -
    November 29, 2011
    Share
    Facebook
    Twitter
    Linkedin

      Developers of fake antivirus software are getting better at copying the look and feel of legitimate antivirus products to make it harder for victims to tell whether they are being scammed or not, according to Kaspersky Lab.

      A fake antivirus Website was found specially designed to mimic the interface for antivirus products from Kaspersky Lab, Symantec’s Norton and Avira, Dmitry Bestuzhev, an antivirus researcher at Kaspersky Lab, wrote on the SecureList blog Nov.29. The initial infection was triggered by a dropper Trojan that downloaded onto the user’s computer the fake screen that closely resembled legitimate software.

      In the past, rogue antivirus products were fake screenshots taken from a generic template. “These fakes didn’t claim to find any infections-the victim was simply ripped off after paying for a useless product,” said Bestuzhev. A recent version observed by Kaspersky Lab simulates the actual scanning process on the victim’s PC, he said.

      Kaspersky Lab researchers noted at the beginning of the month a “substantial decrease” in the number of fake antivirus programs since earlier this year. There were 10,000 daily attempts to infect users with fake antivirus, down dramatically from the 50,000 to 60,000 daily attempts back in June, according to Vyacheslav Zakorzhevsky, a senior malware analyst in Kaspersky Lab’s heuristic detection group.

      However, lately there appears to have been a resurgence of fake AV links, according to McAfee.

      The legitimate-looking scareware is a big problem during the holiday shopping season as fake AV is one of the most common and dangerous Internet threats, McAfee said. Users are being warned to be on the lookout for scams and fake deals and instructed to download and update security software. A user trying to be proactive may not realize he or she is downloading a fake tool that does nothing to protect the machine.

      Zakorzhevsky also noted how some versions of fake software mention cloud protection, “apparently trying to take advantage of a fashionable new concept.” Many security vendors have recently updated their antivirus and security suite to include a cloud element where suspicious software is scanned in the cloud, and malware developers are pretending to have similar capabilities.

      In addition, Kaspersky Lab recently warned of a phishing campaign that pushes an “Antivirus & Security Complete Antivirus Protection Solution.” The scammers did a “good job,” sending out an email that looked like an official Kaspersky email with a URL that looked like it could come from Kaspersky Lab, according to Maria Namestnikova, a senior spam analyst for the content filtering group at Kaspersky Lab. Victims who clicked on the link in the mail were directed to a Website that instructed them to enter credit card details and email address in order to buy the Kaspersky product.

      Namestnikova and Zakorzhevsky warned users to “proceed with caution” if prompted with notifications about “Windows errors” or “system infections” and recommended users go directly to the vendor site to buy security software instead of clicking on links.

      The FBI has estimated losses caused by scareware at over $150 million. Zakorzhevsky has seen deals on underground forums where cyber-criminals invite others to become distributors and earn $25 for every scareware that is installed and paid for. The distributor receives a little over a third of the total price paid by the victim, and the rest of the money goes to the scammers actually running the operation, he said.

      Fahmida Y. Rashid
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×