RSS Alerts

Share

More services

Related Links

Related Stories

  • Searching for Security
    With more than 30 000 web pages being compromised every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves
  • Prank malware spreads across internet
    Anti-virus company ESET has discovered what it thinks is a prank gone wrong. The company suspects that Win32/Zimuse, which has swept the US, was originally intended as a localized malware attack against a group of Slovakian bikers.
  • Catch me if you can
    These days, malware writers are in it for the money. In order to maximise profit, discretion is imperative so stealth technology has been adopted as a rule, rather than an exception. Danny Bradbury looks to the cat and mouse game that researchers and attackers are playing to see who’s coming out on top
  • A Rotting Security Apple?
    Vendors, analysts, and commentators alike have long predicted a surge in malware affecting Apple’s products. Yet, until recently, these prognostications have failed to materialize. Drew Amorosi examines recent malware threats to Apple’s OS X operating system to find out if this is an anomaly, or a sign of things to come
  • Fraudload.OR virus tops Fortinet's latest Threat Landscape report
    Fraudload.OR fake antivirus software was the number one virus detected by Fortinet during the month of June, according to its lastest Threat Landscape report.

Top 5 Stories

News

Sophos identifies fake antivirus software targeting Windows 7

23 March 2010

A security expert at Sophos has unveiled fake antivirus software targeting the new Windows 7 operating system.

As Windows 7 begins to proliferate among enterprise and personal PCs, it was only a matter of time before fake antivirus software, or scareware, began to target users of the new operating system. Security expert Liang Zhang of SophosLabs AU recently identified the currently spreading fake antivirus in a recent blog posting.

This malware specifically targets users of Windows 7 and appears in the form of a pop-up dialogue box, which attempts to tell you that your Windows 7 PC has many serious threats,” said Zhang, who identifies the rouge file as Troj/FakeAle-RK, a trojan that infects the Windows operating system. “When a user clicks ‘Remove all Threats immediately’, another pop-up will be generated asking them to download a file called win_protection_update.exe."

Of course, as Zhang notes, this executable is another ruse, which downloads yet another piece of malware that holds users machines for ransom by requesting payment to ‘disinfect’ the computer.

Zhang muses that the problems this fake antivirus claims to cure were never there to begin with. “Obviously, I won’t enter my credit card details at all”, said Zhang, warning “neither should you”.

This article is featured in:
Internet and Network Security • Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012