New Posts  All Forums:Forum Nav:

Beware of Security and Malware Tools

post #1 of 2
2/17/10 at 11:42am
Thread Starter 
New Spy Eye 'Toolkit' Kills Trojan, Then Steals Bank Info

Quote:
A new Trojan horse has surfaced online; its primary functionality makes it appear to be friendly to end users, but the final result can prove disastrous.

On one hand, the Spy Eye toolkit is celebrated for its ability to remove malicious rival programs from infected computers. It boasts a feature called "Kill Zeus" which removes all traces of the notorious Zeus virus from a victim's PC.

Of course, the Trojan horse has ulterior motives in playing the hero. It "Kills" the Zeus Trojan so that the computer is once again susceptible to attack, meaning that Spy Eye has exclusive access to usernames and passwords.
Botnet Problems on the Rise

Zeus and Spy Eye are both designed to give hackers a simple way to establish their own botnet network of password-stealing programs. Botnet problems escalated in 2009, with the U.S. Federal Bureau of Investigation estimating that they have caused $100 million in overall losses. (Source: yahoo.com)

Malicious programs like Spy Eye and Zeus are designed to steal bank information, which is then used to empty all known accounts. With Zeus out of the picture, Spy Eye can collect a much larger, uncontested dollar amount.

According to Symantec Senior Research Manager Ben Greenbaum, Spy Eye surfaced in Russian cybercrime forums this past December. However, the "Kill Zeus" option makes Spy Eye one of the most aggressive forms of crimeware around. The software can also steal data as it is transferred back to a Zeus command-and-control server. ...
In full.

cheers ...
Reply
Reply
post #2 of 2
2/18/10 at 4:49pm
Thread Starter 

Fake Antivirus Programs Now Offering 'Live Support'

Fake Antivirus Programs Now Offering 'Live Support'

Quote:
Simply saying that rogue antivirus software is becoming more sophisticated is one thing, but a new fake antivirus program called "Live PC Care" has made one necessary change to dupe innocent users: offering live technical support for bogus software.

According to Symantec researchers, once users have installed the program, they are met with a screen that informs them of numerous computer infections, several kinds of malware, and the like. This tactic of duping users is nothing new; what is new, however, is the fact that the free trial version of Live PC Care comes with a large yellow "online support" button.

The button initiates an actual conversation with an online representative that will answer any questions about the product via instant messaging.
Live Support Not an Automated Script

Symantec believes that the supposed "agent" is no automated script, but rather a real person. Naturally, the reason for the addition is to add an "air of legitimacy" to the program. As Marc Fossi, manager of development with Symantec Security Response joked, "Obviously if they've got live tech support, it must be real." (Source: yahoo.com)

Surprisingly, this is not the first time tech support has been offered alongside a fake security product. A company called Innovative Marketing also attempted to reassure victims that they were investing in a legitimate product through live support....
More here.

cheers ...
Reply
Reply
New Posts  All Forums:Forum Nav:
  Return Home