Japanese Police Arrest One-click Billing Scammers
The cyber police unit of the Kyoto Prefectural Police declared that suspects had been arrested following accusation that they infringed upon Japan's Cyber-Crime Law. Actually, it's alleged that the suspects created as also utilized one-clickware for invoicing scams involving single clicks. Loan ToolZ published this dated January 18, 2012.
It maybe noted that during the scam, users were duped into making registration as also buying one service following their redirection onto a specially-crafted Internet site. malware Blog published this dated January 18, 2012.
Reportedly, the invoicing scam, which fetched the Kyoto-based criminals' syndicate 12m Yuan (96,000 pounds or 148,800 dollars), relied on the utilization of a malware.
When Web-surfers visited specific sites, some being adult sites, and opted for "play" so they might watch a film, they actually ended up running the malware that issued commands to their systems.
Meanwhile, the number of confirmed websites that are associated with the one-click invoicing scam is 118. Police said that they couldn't provide any further information except that from the Kyoto Prefectural. Nevertheless, they joined the Prefectural for examining the malware utilized within the assault, the cops added.
Security Consultant Rik Ferguson at Trend Micro said that the scam wasn't any payment-card fraud rather it was more like ransomware or billing fraud. People accessing the websites were tricked into loading one .exe file onto their computers. Consequently, that merited a monetary expenditure towards using the service, while it became impossible for closing or shifting the window that persisted even after the machines' restarting, Ferguson explained. TheRegister published this on January 19, 2012.
Security researchers lament that the one-click invoicing scam doesn't seem as though it'll end anytime soon. That's because one-clickware enables for altering files easily so security detection can be avoided. Online-crooks responsible for one-click invoicing scam manage towards verifying whether security agencies are capable of detecting their malicious codes following which they suitably alter it.
The file alterations in the one-clickware follows the advantages of targeted assaults as all that the cyber-criminals require doing is modifying certain limited lines of their malicious script that would prevent anti-virus software from effectively spotting it.
Related article: Japanese Text Editor Reports Flaw
» SPAMfighter News - 26-01-2012