Malware delivered in parking ticket scam

Powered by SC Magazine
 

Trojans are being distributed through a real-life scam involving fake parking tickets.

Trojans are being distributed through a real-life scam involving fake parking tickets.

 

The Internet Storm Center has reported on a case in the US state of North Dakota where yellow fliers are put on cars that claim a parking offence has been committed. The fliers give the address of a website that is supposed to have pictures of the driver's supposed violation.

 

However, in order to see the pictures, the site instructs you to download a toolbar named PictureSearchToolbar.exe, by doing this you download the Vundo, or Monder, Trojan.

 

SANS analyst Lenny Zeltser said: “I had the opportunity to examine malware whose initial infection vector was a car windshield flier with a website address. The malicious programs were run-of-the-mill; however, the use of fliers was an innovative way of social-engineering potential victims into visiting a malicious website.

 

“The initial program installed itself as a browser helper object for Internet Explorer that downloaded a component from childhe.com and attempted to trick the victim into installing a fake anti-virus scanner from bestantispyware securityscan.com and protectionsoft warecheck.com.

 

“Attackers continue to come up with creative ways of tricking potential victims into installing malicious software. Merging physical and virtual worlds via objects that point to websites is one way to do this. I imagine we'll be seeing such approaches more often.”

See original article on scmagazineus.com

Copyright © SC Magazine, US edition


Malware delivered in parking ticket scam
 
 
 
Top Stories
Meet FABACUS, Westpac's first computer
GE225 operators celebrate gold anniversary.
 
NSW Govt gets ready to throw out the floppy disks
[Opinion] Dominic Perrottet says its time for government to catch up.
 
iiNet facing new copyright battle with Hollywood
Fighting to protect customer details.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  25%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  22%
 
End user computing (desktops, mobiles, apps)
  15%
 
Software development
  26%
TOTAL VOTES: 331

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  56%
 
No
  44%
TOTAL VOTES: 137

Vote