Websites Divert End-users onto Rogue AVs Generated on Google

According to researchers from GFI Software the security company, cyber-crooks have hijacked many well-known websites and modified them to divert end-users onto spurious anti-virus websites that emerge on Google's search engine.

Actually, the researchers discovered that just like normal malicious AV software, the Google-generated anti-viruses too unleashed infections, which reportedly made end-users' PCs vulnerable.

A fake alert on the search engine tells the end-user that Google tools have spotted an abnormal amount of traffic from his PC therefore he requires scanning his system for viruses. Accordingly, he requires downloading and running Google's AV application by clicking the "DOWNLOAD button" else he'll be prevented from using Google's services, the alert explains.

But, if getting scared, as per the alert, the end-user clicks the web-link; he'll get a password-protected file, which GFI found to be Trojan.Win32.Fakeav.tri (v).

However, merely two anti-virus agencies from a total of 43 managed to recognize the malicious nature of this .exe archive.

Disturbingly, the above kinds of attacks outline that albeit the successful proliferation of rogue AVs may've slowed down by 2011-end, they've primarily returned as also continue to be favorite amidst cyber-criminals.

Remarking about this new development, Chris Boyd, Senior Threat Researcher at GFI stated that in spite of the entire security industry putting in its best efforts, malware developers kept on innovating while also created one true, highly dangerous situation for businesses and consumers via the phony applications along with persuasive Web-oriented simulated fraud campaigns. Infosecurity-magazine.com published this on March 20, 2012.

Boyd continued that the most recent scam showed the highly devious threat that fake anti-virus attacks were posing as also underscored how essential it was to update signature-definitions regularly, in addition to adopting stringent mechanisms for web-filtering that would nip malicious websites in the bud.

Eventually, it was advisable that Internet users overlooked any doubtful offer of AV program despite them appearing on Google, Boyd added.

Further, one aspect by GFI within its February 2012 Report yet again is echoed with the current assault identification i.e. there had been an enormous rise in fresh rogue anti-viruses, most of them getting spread through spam.

Related article: Websites – The Latest Weapon in The Hands of Phishers

» SPAMfighter News - 3/29/2012