RSS Alerts

Related Stories

  • Social Networking - A Risk to Information Security?
    As the popularity of social networking sites continues to mount, it becomes increasingly important to consider the information security risks posed in the context of a wider data loss prevention and reputation management strategy. Cath Everett reports
  • AI superbots threaten information security
    The development of virtual servers and cloud computing has brought with it a new information security problem - artificially intelligent (AI) superbots. Steve Gold explains what can be done to defend against this totally new genre of information security threats
  • An injection of new ideas
    Securing IT means coping with Donald Rumsfeld’s ‘known unknowns’ – expected attacks whose nature is a surprise. Concepts from medicine, game theory and crowd sourcing may help, finds Danny Bradbury
  • Comment: Anti-Malware Automation Tools Save Time and Money
    IT budgets continue to be squeezed while malware challenges become more formidable each day. Matt Allen of Norman Data Defense Systems discusses how sandboxing technologies can deliver on cost-effectiveness and timeliness claims by doing high-volume malware analysis in a safe environment.
    Members' Content
  • Searching for Security
    With more than 30 000 web pages being compromised every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves

News

Hackers hit the road

10 February 2009

In a fresh case of social engineering, ever-resourceful hackers in the US have found a new way to direct unsuspecting users into downloading a virus, through fake parking tickets.

Upon finding the traffic violation tickets on their windscreen, drivers in Grand Rapids, North Dakota, were instructed to visit a website where they could search for photographic proof of their bad parking.

The ticket read: ‘PARKING VIOLATION: This vehicle is in violation of standard parking regulations. To view pictures with information about your parking preferences, go to [website-redacted]’.

While searching for their own cars, users would be presented with pictures of badly-parked vehicles in car parks, which had been under the ‘Photoshop’ knife to remove license plate details.

The user would then be tricked into downloading an executable ‘toolbar’ containing a Trojan.

“Attackers continue to come up with creative ways of tricking potential victims into installing malicious software,” wrote Lenny Zeltser, anti-virus analyst at the SANS Institute. “Merging physical and virtual worlds via objects that point to websites is one way to do this. I imagine we'll be seeing such approaches more often.”

 

This article is featured in:
Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water