12345

4/05/2011

Identified malicious files disguised overseas' famous anti-virus' installation file

1. Introduction

Recently, a russian site has been revealed the root site of being spread malicious file disguised as famous anti-virus software.
This downloadable file can cause user financial damage on executing, fortunately damage case hasn't reported in South Korea so far.
With the scam techniques getting sophisticated, user who installs overseas anti-virus software needs to be careful on downloading and installing those SWs.
  
2. Spreading path and symptoms of infection

Found malicious file disguised as an installation file is being spread Russian web site.



You can see famous anti-virus' icon in red square, clicking anti-virus software will move current page to following site.
Clicking related link will download malicious file masqueraded as an overseas' famous anti-virus software.



* Downloadable fake anti-virus malicious files



This site already has various malicious files disguised as famous anti-virus' setup file, you can see same activation code field on executing after downloaded.



Clicking "Payment Terminals" will open another window for micropayment via SMS which can cause user financial damage.



3. How to prevent

Currently, cybercrimes especially for financial exploit are big booming these days.
To use PC safely from security threats of these malicious files and social engineering, we recommend following "Security management tips" for general users.

Security management tips

1. Maintain the latest security update on OS and applications
2. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function
3. Do not see and download attached file from suspicious e-mail.
4. Keep caution to link from instant messenger and SNS.

INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function and runs responding system against various security threats.

16 comments:

  1. I think that you just need click here for some info on how to write your summer homework. I'm sure that you need to check it out

    ReplyDelete
  2. I am glad that I saw this post. It is informative blog for us and we need this type of blog thanks for share this blog, Keep posting such instructional blogs and I am looking forward for your future posts.
    Cyber Security Projects for Final Year

    JavaScript Training in Chennai

    Project Centers in Chennai

    JavaScript Training in Chennai

    ReplyDelete
  3. An outstanding Admission Essay Writing service provider ensures that all College Admission Essay Writing Services are capitulated to you on or before time. This ensures that there is enough time to make changes or adjustments on the Professional Custom Admission Essays.

    ReplyDelete
  4. It is important for college nursing students to seek help with nursing writing services from a reputable custom nursing research paper service company so as to be assured of good grades in their nursing research paper services.

    ReplyDelete
  5. There are academic nursing writing help companies whose ultimate goal is to provide Help with Nursing Writing Services since they are aware most nursing essay writing service part-time students lack enough time to complete their college custom nursing assignments.

    ReplyDelete
  6. It's very good post which I really enjoyed reading. It is not everyday that I have the possibility to see something like this.
    homepage

    ReplyDelete
  7. Engineering assignment writing services are essential for college & university engineering research paper services seekers and Engineering Writing Services.

    ReplyDelete
  8. I am happy to find this post very useful for me
    site

    ReplyDelete
  9. Custom Healthcare Essay Writing Services is very popular for students in search for healthcare assignment writing services and healthcare research paper services.

    ReplyDelete

  10. 192.168.1.254

    192.168.o.1

    192.168.l0.1 Router login
    This IP address is used by the routers like TP-Link, Netgear, D-Link uses it as the default IP address.

    ReplyDelete