12345

12/01/2011

[Information] Be careful about scams around the end of the year

1. Introduction

The season around the end of the year is the best season for scammers. Malicious file distributors who are usually using social engineering technique are just choosing the best timing to send these malicious stuffs. In case of this malicious mail used social engineering technique, it can easily induce user to download and be infected by this kind of malicious files.
Therefore, we are introducing malicious file spreading case to you and will let you know how to prevent from these malicious attachments.



2. Spreading path and symptoms of infection

In case of spreading with this kind of social engineering technique, creators are usually using by e-mail or SNS for its distribution.
Especially, injecting URL for download is the most common technique.

* Example: By e-mail


 
Injecting link for download malicious file or certain URL.
Disguising as a public institution or company.

* Example: By social network services



Using Facebook is also common technique for spreading. The range of spreading can be wider than using e-mail.

3. How to prevent

E-mail and SNS are common cases of social engineering technique.
To use PC safely from security threats of these malicious attachments, we recommend you download latest security updates and obey following "Security management tips" for general users.

Security management tips

1. Maintain the latest security update on OS and applications
2. Use anti-virus SW from believable security company and keep updating the latest engine and using real time detecting function
3. Do not see and download attached file from suspicious e-mail.
4. Keep caution to link from instant messenger and SNS.
5. Execute downloaded file after scan with anti-virus SW.

INCA Internet (Security Response Center / Emergency Response Team) runs responding system against various security threats.

No comments:

Post a Comment