Halloween must be coming because the amount of scareware I am removing from peoples computers is on the rise.
You may not have any idea what I am talking about when I mention scareware, also known as rogue security software, but I'll be willing to bet that you or someone you know either has experienced it, or will in the near future. Scareware now poses one of today's greatest security challenges to computer users. Scareware has become a very lucrative industry for cyber criminals, and it does not seem to be slowing down.
WHAT IS SCAREWARE?
Scareware comprises several classes of scam software with malicious payloads, or of limited or no benefit, that are sold to consumers via certain unethical marketing practices. The selling approach uses social engineering to cause shock, anxiety, or the perception of a threat, generally directed at an unsuspecting user. Some forms of spyware and adware also use scareware tactics.*
Scareware, or rogue security programs, normally start as a popup that claims your PC is infected with malware. It then prompts you to purchase the fake security software - which is actually malware in disguise — in order to remove the "threat". Essentially, it is malware pretending to be genuine Internet security programs, with the aim to steal your money, private information, or to expose you to other high risk cyber threats.
For more info, check-out my post from Jan. 28, 2010 entitled: Extortionware / Rogue Security Software / Malware
* Wikipedia article: http://en.wikipedia.org/wiki/Scareware
** Clickjacking is a malicious technique of tricking Web users into revealing confidential information or taking control of their computer while clicking on seemingly innocuous Web pages. A vulnerability across a variety of browsers and platforms, a clickjacking takes the form of embedded code or script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function. Wikipedia article: http://en.wikipedia.org/wiki/Clickjacking
You may not have any idea what I am talking about when I mention scareware, also known as rogue security software, but I'll be willing to bet that you or someone you know either has experienced it, or will in the near future. Scareware now poses one of today's greatest security challenges to computer users. Scareware has become a very lucrative industry for cyber criminals, and it does not seem to be slowing down.
WHAT IS SCAREWARE?
Scareware comprises several classes of scam software with malicious payloads, or of limited or no benefit, that are sold to consumers via certain unethical marketing practices. The selling approach uses social engineering to cause shock, anxiety, or the perception of a threat, generally directed at an unsuspecting user. Some forms of spyware and adware also use scareware tactics.*
Scareware, or rogue security programs, normally start as a popup that claims your PC is infected with malware. It then prompts you to purchase the fake security software - which is actually malware in disguise — in order to remove the "threat". Essentially, it is malware pretending to be genuine Internet security programs, with the aim to steal your money, private information, or to expose you to other high risk cyber threats.
How does it End Up on Your Computer?
Scareware is distributed in a variety of ways, using social engineering tactics to deceive and mislead people. It can be encountered almost everywhere on the web today. For example:
- Search Results: Be careful what you click. Look at the link before you click it. Scammers prey on unsuspecting computer users by exploiting misspelled URL's (Uniform Resource Locator) and use popular search queries about celebrity news and other hot topics to lure users to their website. Clicking on such a link could launch the scareware.
- Fake Ads: Ads that look like they come from a legitimate company can in actuality be malware. These ads have even appeared on high-profile sites, such as FoxNews, New York Times, and MSNBC. If clicked on, either a fake malware scan is triggered, or a warning is shown in an attempt to trick the user into believing their computer is already infected with malware, and that purchasing the application will help them get rid of it.
- Social Networks: This past year, "clickjacking**" attacks and other similar scams on social networks have been on the rise. Tainted links can easily be distributed this way. Again, be careful what you click.
Spotting the Fakes.
It is nearly impossible for most people to spot a rogue security program by merely looking at it. Most of them have a professional-looking website that appears to be from a legitimate company.
How Can You Avoid Scareware?
What can you do to help prevent the spread of scareware and make sure that you don't fall for the cyber criminals' tricks?
- Do not fall for scare tactics. While browsing sites, be cautious of pop-ups warning you that your system is infected and offering a product to clean it up. Never pay for a program that installed itself to your computer. This is a sure sign of rogue software.
- Use security software with real-time protection and keep it up-to-date. If you know that you have anti-virus, anti-spyware, and a firewall on your PC, you can safely ignore security alerts you receive that do not come from your chosen security software provider.
- Ask ME (Kesar Tech) or knowledgeable friends and family members about quality software they use. Keep in mind that when you search for trustworthy security software online, rogue products can, and often do, appear in the search results list.
- Practice online skepticism. Be aware that rogue security software does exist on the Web, and be careful to avoid it. These programs are designed to look real - meaning they may act like legitimate programs, use false awards and reviews to hook you , or employ other deceptive tactics. It's also a good idea to familiarize yourself with common phishing scams, and to be cautious of links in e-mail messages and on social networking sites (Facebook, Twitter, etc...).
For more info, check-out my post from Jan. 28, 2010 entitled: Extortionware / Rogue Security Software / Malware
* Wikipedia article: http://en.wikipedia.org/wiki/Scareware
** Clickjacking is a malicious technique of tricking Web users into revealing confidential information or taking control of their computer while clicking on seemingly innocuous Web pages. A vulnerability across a variety of browsers and platforms, a clickjacking takes the form of embedded code or script that can execute without the user's knowledge, such as clicking on a button that appears to perform another function. Wikipedia article: http://en.wikipedia.org/wiki/Clickjacking