‘Protection System’ Scareware Disables ‘MalwareBytes’

According to a warning released by investigators at security company 'Sunbelt Software,' bogus antivirus software, also called 'rogueware,' could potentially instruct computer users to disable their security software. This tendency has been found in the particular case of "Protection System" a new rogueware that tries to disable MalwareBytes. MalwareBytes is a popular anti-malware security program.

Described as phony anti-malware programs, rogueware pose as authentic security software that convince computer users into buying them. However, they install malware on their (users) systems.

Creators of such rogue software often deceptively market them as antivirus applications/tools, which claim to improve system performance, but they are in fact worthless. Since rogue anti-malware developers use techniques that aim to scare end-users, the programs in general are referred to as 'scareware.'

However, the newly appearing "Protection System" acts even more deceptively as it actually searches for an authentic anti-malware program on the target computer and makes its user uninstall it.

After installation, Protection System shows up a message in case it finds MalwareBytes. Subsequently, if the end-user presses the 'OK' button, the scareware would summon the MalwareBytes uninstaller that uninstalls the application. Thereafter, the rogue application would prompt the user to provide his e-mail ID and end with a 'thanks' note, giving the impression that he had really bought Protection System.

Nevertheless, legitimate antivirus companies and other security players have long been fighting to curtail rogueware threats, but at times such malware too can retaliate as the new 'Protection System' does.

Rogue anti-malware software also represents malware that grows at fast pace. According to Sunbelt, more than 760 such programs were detected during 2005-08. Some of these carry authentic-sounding names like "Malware Catcher 2009," "Fast antivirus 2009," and "CoreGuard antivirus 2009."

In recent time, a lot of new scareware variants have emerged in cyberspace. One of these variants have been using environment related excuses to trick end-users into purchasing worthless security software after telling them that part of the sale money from each purchase would be used for certain environmental cause.

Related article: “Loopholes did not cause online banking thefts”: ICBC

» SPAMfighter News - 9/24/2009