Consumer Blogs
- Consumer Threat Alerts (18)
- Consumer Threat Notices (3)
- Cyber Security Mom (182)
- Cyber Security Mum – Australia (29)
- Cyber Security Mum – India (53)
- eCommerce (5)
- Family Safety (75)
- Identity Theft (130)
- Mobile – Consumer (28)
- Robert Siciliano (154)
Feeds & Podcasts
Meet the Bloggers
Archive
- May 2012 (30)
- April 2012 (38)
- March 2012 (48)
- February 2012 (46)
- January 2012 (47)
- 2011 (477)
- 2010 (429)
- 2009 (378)
- 2008 (271)
- 2007 (354)
- 2006 (143)
Tags
$1 million guarantee, 3DS, 3G, 12 Scams of Christmas, 99 things, 419 scam, 2011 Threats Predictions, 2012, 2012 Security Predictions, Abbreviation, access to live fraud resolution agents, Account Takeover Scams, addiction, adult online content, advance-fee fraud, affiliate marketing schemes, Alex Merton-McCann, Android, android antivirus, Android security, android security app, animation, Anonymous, Anonymous Group, anti-malware, anti-phishing, anti-spam, anti-spyware, anti-theft, anti-virus, anti-virus program pops up, antivirus, Antivirus software, App Alert, Apple, application blacklisting, applications, app protection, apps, app safety, app security, ATM scams, ATM skimming, Australia, Back To School, Bad Apps, bank accounts, bank fraud, banking fraud, Belarus, Bernie Madoff, bill collectors call for nonpayment, Bin Laden Scams, BlackBerry, black hat hackers, blue screen, Bluetooth, book, bot, botnet, botnets, Brazil, Brent Sanders, Cameron Diaz, canada online scams, case study, celebrities, chain mails, Charity Phishing Scams, child identity theft, children online safety, children safety online, child safety, christmas, Christmas scams, christmas shopping, Christmas shopping concerns, Christmas shopping crimes, cloud apps, cloud security, college students, computer, computer issues, computers, computer security, computer support, Consumer, consumer threat alert, consumer threats, Consumer Threats Alert, cookies, Corporate Responsibility, counter identity theft, creating safe passwords, creating strong passwords, credit card fraud, credit card fraud and protection, credit card skimming, credit card thefts, credit fraud alerts, credit monitoring, credit monitoring and resolution, credit scores, customer service, Cyber, cyber addiction, cyberbullying, cyber bullying, Cybercrime, cybercrime, cybercriminal, cybercriminals, cyber criminals, cybercrooks, cyber ethics, cybermom, Cyber Monday shopping, cyber mum, cybermum, Cybermum India, cybersafe, cybersafety, cyber safety for women, Cyber savvy mom, cyber scams, cyberscams and identity theft, cyber security, cybersecurity concerns, cybersecurity mom, Cyber Security Mom, cybersquatter, cybersquatting, cyberterrorists, cyberthreats, dangerous searches, data breach, data breaches, data loss, Data Protection, dating scams, decade of cybercrime, deceptive online promotions, Deepika Padukone, denied credit, digital assets, digital assets worth, digital devices, digital gadgets, digital music and movie report, download, drivers license, drivers license identity theft, dumpster diving, e-card scams, e-mail id, easter, Easter scam, ecards, ecard spam, eCommerce, Email & Web Security, email accounts, email scam, email scams, email security, email spoofing, EMM, employment fraud, Employment Identity Theft Scams, encryption, Endpoint Protection, Epsilon, epsilon security breach, etiquette, exploiting real brand names, facebook, Facebook Security, Facebook spam, fake ant, fake anti-virus software, fake anti virus, Fake Anti Virus Scams, fake emails, Fake Identity, fake software, fake system tool programs, fake websites, families online, family, family identity safety, family online safety, family protection, Family Safety, Farmville, fictitious identity theft, financial scams, Firesheep, firewall, forwards, fraud, fraud resolution, fraud resolution agent assistance, fraudulent credit card or bank charges, Free gift card scam, Free giveaway scam, freely downloadable morphing tool, free money scam, free money scams, free WiFi spots, FTC, games, Gaza, geotag, gift cards and iPad promotions online, gift online shopping, gift scams, Global Payments, global threat intelligence, gmail, good parenting, google, government, GPS, hacker, Hackers, hackers steal credit card numbers and sensitive personal data, hacking, Hacktivism, harassment, heidi klum, Here you have worm, Hi5, Hispanic, hoax - slayer, holiday gifts, holiday malware, Holidays, holiday scams, holiday screensavers, holiday shopping, holiday shopping fraud, holiday websites, home network issues, household devices, how to set up wi fi, how to talk to kids, how to talk to teens, identify spam, identity fraud, identity fraud scams, identity protection, identity protection $1 million guarantee, identity protection alerts, identity protection fraud, identity protection surveillance, identity surveillance, identity theft, identity theft celebrities, identity theft expert, identity theft fraud, identity theft protection, identity theft protection identity protection fraud, identity theft protection product, identity theft resolution, identity theft ring, identity theft risk, identity theft scams, identity theft tax scams, Identity thieves and cybercriminals, identity threat protection, ID theft, IIM Bengaluru suicide case, illegal immigrants, impersonation, India, India cybermum, Indian kids, Indonesia, infected mobile apps, information collected by advertisers or social media marketing, innovation, insiders, internet addiction, internet connected devices, Internet filtering, internet identity trading surveillance, Internet monitoring, Internet Phishing Scams, internet privacy, Internet Safety, internet security, internet security tips, internet time limits, investment scams, iOS, iPad, iPad scams, iphone, IRS, IRS scams, itouch, Japan, japan earthquake malware, japan earthquake safe donation, japan earthquake scams, japan tsunami scams, job applications, John Bernard Campbell, kama sutra koobface, Katrina Kaif, keep family PC safe, keycatchers, keyloggers, kids, kids online behavior, kids online safety, kids safety, koobface, laptops, Late Payment Scam, legal identifier, linkedin, live access to fraud resolution agents, Location services, logging out of accounts, login details, Lori Drew, loss of gadgets, lost, lost or stolen driver’s license credit cards debit card store cards, lost or stolen Social Security card or Social Security number, lost or stolen wallet, lost wallet protection, lottery, mac, Mac antivirus, mac malware, Mac OS X, Mac OSX, Mac security, mac threat, mailbox raiding, Mail fraud, mail order bride spam, malicious apps, malicious files, malicious program, malicious sites, malicious software, malware, malware threats, malweb, managing personal affairs online, map, mapping the mal web, mass mailing worm, McAfee, Mcafee's Who Broke the Internet, McAfee-Synovate study, mcafee all access, McAfee AntiSpyware, McAfee Antivirus Plus, McAfee Consumer Threat Alert, McAfee Enterprise Mobility Management, McAfee Facebook page, McAfee Family Protection, McAfee Family Protection for Android, McAfee Identity Protection, mcafee identity theft protection, McAfee Initiative to Fight Cybercrime, McAfee Internet Security, McAfee Internet Security for Mac, mcafee internet security for mac; mcafee family protection for mac, mcafee mobile, McAfee Mobile Security, McAfee Q4 2011 Threat report, McAfee Safe Eyes, McAfee Safe Eyes Mobile, McAfee Scan and Repair, McAfee SECURE, McAfeeSECURE, mcafee secure shopping, McAfee Security Journal, McAfee security products, McAfee security software offer, McAfee Site advisor, McAfee SiteAdvisor, mcafee spamcapella, McAfee TechMaster services, McAfee Threat Predictions, mcafee threat report, mcafee total protection, mcafee wavesecure, McAfee® Internet Security Suite, medical identify theft, Medical identity theft, medical records, michael jackson, Microsoft, Mobile, mobile antivirus, mobile app, mobile applications, mobile apps, mobile banking, mobile carriers, Mobile Commerce, mobile devices and security threats, mobile devices issues, mobile identity security, mobile malware, mobile phones, mobile phone spyware, mobile protection, mobile safety tips, mobile scam, mobile security, mobile security app, mobile security software, mobile smartphone security, mobile threats, mobile wireless internet security concerns, Moira, Moira Cronin, mom, money laundering, monitor a child’s identity, monitor credit and personal information, monitoring, Morphing, most dangerous celebrities, Mother's day, mothering, mothering advice, mothering boys, mothering Internet safety, movies, multiple devices, multiple social security numbers, mum, Mummy blogger, myspace, mystery shoppers, National Cyber Security Awareness Week, national identification card, Netbook, netiquette, Network Security, new year resolution, New York Times, Nigerian 419 Scam, nigerian scam, Oak Ridge National Laboratory, Occupy Wall Street, OCTO, online, Online Backup, online banking, online banking safely, online book shopping, online bookstore, online child safety, online coupon scams, online danger, online dangers, online dating, online e-tailers, online ethics, online fraud, online game, online games, online game spam, online gaming, online harassment, online marketing sites, online personal data protection, online predators, online safety, online safety for kids, online safety of kids, online safety tips, online scams, online search, online security, online security education, online shopping, online shopping risks, online shopping scams, online shopping threats, online surfing, online survey scam, online threat, online threats, onlinethreats, online video, Operation Aurora, organized crime, organized criminals, oscars, parental advice, Parental control, parental controls, passport, password, password complexity check, passwords, password security, password stealer, PC, PC Addiction, PCI, PCI DSS, PCs, pc security, Peer to Peer file sharing, personal identity fraud, personal identity theft, personal identity theft fraud, personal information, personal information loss, personal information over mobile phones, personal information protection, Personal information security, personal privacy, personal protection, Phantom websites, phishing, phishing scams, pickpockets, pic sharing, piers morgan, Pin scams, pinterest scam, Playstation, Ponzi scam, pop ups, posting inappropriate content, posting videos online, potential employers, predictions, privacy, Privacy Awareness Week, privacy setting, privacy settings, proactive identity protection, proactive identity surveillance, Products, Protect all devices, protect devices, protect digital assets, protect teens, provide live access to fraud resolution agents, Pune Police, qr code, QR codes, Rebecca Black, Rep Weiner, research, resolutions, responsible mail, restore credit and personal identity, ring tones, risk of personal information loss, risks of online shopping, risky, Robert Siciliano, roberts siciliano, rogue anti-virus software, rogue applications, romance scams, Russia, safe email tips, safe online shopping, safe password tips, Safe search, safe searching, Safe surf, safe surfing, safe transactions, scam, scammers, scams, scareware, schools, screensavers, sear, search, secure container, secure devices, secure new devices, secure smartphone, secure wi fi, security, security breaches, security landscape, Security Seals, security software, self-defence, sensitive data, sensitive documents, settings, sexting, shopping scams, shortened URLs, simple safety tips, SiteAdvisor, site advisor, smartphone, smartphones, smartphone safety, smartphone security, smart phone threats, smishing, SMS Lingo, sniffing tools, social engineering, social media, social media online scams, social media passwords, social media threats, social networking, social networking best practices, social networking scams, social networking sites, social networking sites security, social networks, Social Security, Social Security Card, social security number, Social Security number fraud, social security number theft, Social Security number thefts, software, Sony, spam, spam mail, Spams, Spellstar, Spyware, SSN fraud, st. patricks day, stay safe from phishing, Steve Jobs, stolen cards, stolen mail, stolen medical card, stolen passwords, stolen Social Security number thefts, student loan applications, Suites, summer activities, Summer holidays, summer vacation, support services, surfing, suspicious messages, swine flu, Symbian, tablets, tablet security, taxes, tax filing tips, taxpayer warning, Tax Preparer Scams, tax returns, tax scams, tax season reminder, teacher abuse over the internet, tech gifts, technical support, teen hate video, teens, teens online safety, teens posting video, text message, text messaging, Threats, threats on women's day, Tips, tips and tricks, tips to mobile security, toolkit scam, travel related online scams, travel risk, travel security, trending topics, trojans, trusted websites and web merchants, Trustmark Security, tweens, tweet, Tweets, twitter, Twitter celebrities, Twitter online security, twitter spam; phishing; twitter scam, type in website address incorrectly, types of phishing, typing in incorrect URLs, typos, typosquatting, unauthorized credit card transactions, unique password, unlimited technical support, unprotected PCs, unsecured unprotected wireless, unsecured unprotected wireless security risks, unsecured wireless, Unsecure websites, unsubscribe, UPS scam, UPS scams, URL hijacking, URL shortening services, USB drives, use of cookies advertising personal security, use of Social Security number (SSN) as national ID, US ESTA Fee Scam, US passport, US Visa Waiver Program scam, valentine scams, valentines day scams; romance scams; email spam, valentines day scams; romance scams; valentine threats, verify website's legitimacy, video game, violent video games, virus, Viruses, Virus protection, wave secure, Web 2.0, web mobs, web protection, web searches, web security, web sites, welfare fraud, wells fargo, what to do when your wallet is lost missing or stolen, white hat hackers, Wi-Fi WEP WAP protection breach, wifi, Wii, windows, Windows 7, work with victim restore identity, Worms, wrong transaction scam emails, www.counteridentitytheft.com, Xbox, xmas, youth, youtube, you tube videos, zombie computers, zombies, • Facebook etiquette, • Most dangerous celebrity, • Parental control
Cyberattack Via MSN References Facebook, Hi5
|
|
Wednesday, February 17, 2010 at 6:57pm by
Archive
Cyberscammers are referring to popular social networking Web sites Facebook and Hi5 in an attempt to trick Spanish speaking computer users into clicking on a personalized malicious link sent via instant messages.
On Wednesday a friend in Ecuador sent me repeated messages via MSN Messenger. The messages asked: “Estas foto es tuyo?” with a link to a URL that resembled Facebook (but was misspelled) and a mention of Hi5 as well. (For non-Spanish speakers, the question translates to: “Is this photo yours?”)
The link included my personal e-mail address, which is also my MSN user name. I am paranoid, so I didn’t click on the link. However, I can understand that others might be duped by a message that comes from a friend, asks about a photo, includes a personalized link and references popular social networking sites.
I asked Craig Schmugar, a malware researcher at McAfee Labs, to check out the link. As I suspected, it goes straight to malware. The malicious program appears to spread itself via several instant message applications and turns an infected computer over to the attacker, Craig told me. I am not including the link in this blog posting because the Web site is live and the malware is still online.
Instead of going to a photo, the malicious link actually goes to an executable file (the malware.) If you run the file, it will pop up a message that says “Picture can not be displayed.” This may give you the false sense that nothing bad is happening on your PC, but you in fact just executed a malicious program. The attackers now have full control over your computer and it will join a network of commandeered PCs called a botnet.
The malware displays a fake alert while the nefarious software is installed.
The map below shows detections of the attack. McAfee Artemis Technology, our real time detection, blocks the attack. As you can see, the targets mostly appear in Central America, Latin America and Spain. No surprise, since the attack uses Spanish and refers to Hi5, which is popular in Spanish speaking countries.
Targets of IM attack mentioning Facebook and Hi5.
This is an old trick. Cyberscammers continuously look to build out their armies of commandeered computers by sending out malware. The attacks continue to get more cunning by personalizing them, just like in this example.
It has been a while since I’ve seen any of my friends get infected with malware and have their contact list spammed with malicious links. I hope it will be a while until it happens again.
As a general rule, don’t click on links that arrive via instant messages or e-mail, unless you have verified that your friend indeed intended to send you a trusted link. Also, make sure you run updated security software like McAfee Total Protection to shield against these type of attacks, just in case a cybercrook is successful in tricking you into clicking on a link.
|
|
Tags: Cybercrime, facebook, Family Safety, Hi5, malware
Comments (1)
TDM
February 24, 2010 1:35PM
Is very true, and we happened to see some friends send some link to see a photo or video, the worst thing you can do is click on that link.
Submit your own comments / message for this post