All the latest UK technology news, reviews and analysis
|
|
|
11 Mar 2010
Security firm Webroot is warning internet users to be on the lookout for a malware attack masquerading as an official Windows update.
The attack appears to relate to a number of out-of-band patches recently released by Microsoft.
"The spy, which serves as nothing more than a vehicle for a fake product called Antimalware Defender, so closely resembles a Windows Update installation dialogue that some members of our threat research team had to pause and look carefully at the dialogue box before deciding that it is, in fact, a big fat hoax," said Webroot threat researcher Andrew Brandt in a blog post.
Brandt warned that falling for the scam could mean users being coerced into handing over money to deal with a 'virus problem' that does not exist.
"While the fake anti-virus detections it 'reports' are pretty believable, the help file created by the goofballs behind this spy is truly a masterwork of idiocy. The file has helpful links back to Microsoft's own Windows Defender privacy policy, and other nuggets of gold."
Brandt added that computer owners used to dealing with Microsoft updates should find the fake easy to spot.
"Identifying the file is not all that hard if you're accustomed to using Task Manager or Process Explorer to watch what's running on your PC," he said.
"Unlike a real Windows Update session, these fake updates appear as a DLL running from the temp folder with the words 'start worker' in the command line. Once you kill this process, you can empty your temp folder and be done with this nuisance."
IT managers may consider warning less experienced workers to be aware of the risk.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
My client, a leading telecoms firm listed in the Sunday...
ASP.NET C#, .Net 3.5, .Net 4.0 MVC developer to join...
Linux Systems Administrator - £45k - London A Linux...
Unix systems administrator required to work for leading...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Microsoft Lottery Promotion/Windows Online Promotion
I want to know if it is true that Microsoft is really doing this promotion and giving away money prizes? If I am a winner, is it neccessary for me to pay to get the prize? I DON'T WANT TO GET CHEATED BY THE COURIER SERVICES WHICH IS SUPPOSED TO DELIVER THE PRIZE. Thank you.
Posted by: MEGAT AHMAD ABDULLAH 13 Mar 2010