Ransomware Jeopardizes Users with Official Plagiarism Complaint
According to Avira, an IT security firm, a latest blackmail Trojan using a new con is in action. The malicious software tells the victims that to keep away from a grievance arising due to downloading unlawful copies of copyrighted files, the ransomware dupes must pay around US$ 400 to a supposed copyright organization.
The ransomware claims to be ICPP Foundation's software, which purportedly represents copyright owners across the world. Notably, no such ICPP Foundation exists.
Reportedly, every time the user reboots the machine, he/she is welcomed with this message. It must be noted that even if there is no illegal stuff on the user's system, the message is shown. The malicious software shows translated content in different languages including German and English.
If the dupes really wish to pay the ransom amount, they are forwarded to a professionally crafted website at icpp-online.com. On this website, the victims have to divulge their credit card details. The website is bogus and it visibly serves just to accumulate credit card details, and this data is intended to be gainfully sold to the criminal in the underground market.
It is learnt that F-secure, yet another security firm, also released a warning regarding the same peril. According to the security firm, the domain is registered to Mr. "Shoen Overns". firstname.lastname@example.org, the same e-mail ID has been observed earlier also in various other domains linked to Koobface and Zeus scams.
In addition, even the telephone numbers provided on the website doesn't exist.
Avira's anti-malware software detects the malware with virus definition file 7.10.06.65 as DR/Ransom.CardPay.A and TR/Ransom.CardPay.A. Besides, antivirus solution by F-Secure detects the malware as Rogue:W32/DotTorrent.A.
Meanwhile, experts said that cybercriminals attempt to pressurize the owners of the computers infected by them. The pressure is too intense that they pay almost instantly, without even thinking about it.
Hence, users are strongly advised to keep away from fake warnings. Users shall simply deny paying the money to these scammers. The problem will only aggravate if users keep on paying them, stated F-Secure researchers. The best piece of advice for the users is to install decent antivirus software which can spot and eliminate the Trojan.
Related article: Ransomware Trojan Asks for $300 for Giving User Data Back
» SPAMfighter News - 30-04-2010