Friday, October 2, 2009

Beware of fake 'Ondoy' antivirus

Posted on 7:46 AM by Nidhi

MANILA, Philippines – Cybercriminals are again taking to the Internet, this time exploiting the recent natural calamity that hit Manila.

Software security firm Trend Micro warned against malicious software lurking in infected websites that utilize the key words related to tropical storm “Ondoy” (international name Ketsana).

In a statement, Trend Micro Senior Threat Analyst Joseph Pacamara found several malicious websites that when visited, will take the user to other landing websites that contained the executable file "soft_207.exe".

This file contains a hidden Trojan called TROJ_FAKEAV.BND, which masquerades as a fake antivirus application.

The Trojan apparently checks the IP address of visitors if they are within a specific region, most likely from the Philippines where “Ondoy” hit.

The words “Ondoy” and “Manila flood” were among the most talked about topics in social networking sites and blogs in the aftermath of last weekend's storm.

Many turned to Facebook.com and Twitter to report what is happening in their locales. Some also uploaded videos on YouTube.

Continue Reading

                                                                    Source Google News

Enjoyed Reading! Subscribe to our feeds to get more

Digg Technorati del.icio.us Stumbleupon Reddit Furl Yahoo
Labels: