There are 2 phishing incidents recently, both targeted at stealing personal information. The first is a so-called Microsoft Service Pack download notice, while the other is a fake DHL webpage. Another item worthy of parental attention is that school children are writing Obama-related computer virus. The infected webpage not only contain the virus, but also tools for hackers to create their own viruses. Even if you are not the least worried of an infection, you will not want your child to be a hacker isn’t it? You can prevent all these from happening by using WTP_Add_on which is capable of blocking such rouge websites.
This is probably the type of support one wouldn’t want to have. Spammed email messages were found pretending to come from Microsoft Windows Support and claiming that Microsoft Service Pack 1 and Service Pack 2 have been discovered to have an error that can damage the computer’s software or even the hardware. These messages encourage users to download and install a file in order to fix the problem. When users click the download button they are redirected to a site and are asked to download a file which Trend Micro detects as TROJ_DLOADER.CUT. TROJ_DLOADER.CUT connects to a certain URL to download another malicious file, which in turn is detected by Trend Micro asTSPY_BANKER.MCL. TSPY_BANKER.MCL monitors the affected user’s online transactions and steals banking related information. Not too many TSPY_BANKER variants have been reported to be related to notable attacks recently, and this incident may pretty much mark the end of the hiatus. Users are advised to ignore spammed messages and, more importantly, to never click links embedded in these messages. Trend Micro users are protected from this attack by the Smart Protection Network, as the related files, spam, and URL are already detected and blocked.
Figure 1.Spammed messages purporting to come from Windows Support
Figure 2.User is prompted to download a malicious file
Comments