Fake Parking Tickets Come With a Virus
- By Tony Pullon
- Published 6/02/2009
Tony Pullon
Managing Director Net-Ctrl Limited
For more information please contact sales@net-ctrl.com or
telephone sales on 01473 281 211.
Hackers in the U.S. have used social engineering techniques to dupe car owners in to visiting a bogus web site after having been issued with phfoney parking tickets.
Anti-virus firm McAfee says the Vundo Trojan then gets users to install a fake anti-virus scanner.
Vehicles in Grand Forks, North Dakota were the targets for this new type of fraud.
Drivers found the following message on the yellow ticket on their windscreen: "PARKING VIOLATION This vehicle is in violation of standard parking regulations".
The ticket then instructed drivers to visit a website, where drivers could "view pictures with information about your parking preferences".
According to Internet security watchdog The SANS Institute, the website then had photos of cars in various car parks around Grand Forks and instructed users to download a tool bar to find photos of their own vehicle.
But the tool bar was actually an executable file which installed a Trojan virus that then displayed a fake security alert when the PC was rebooted. The fake alert then prompted the user to install fake anti-virus software.
Writing on the SANS blog, anti-virus analyst Lenny Zeltser ran through the different stages of infection.
"The initial program installed itself as a browser helper object (BHO) for Internet Explorer that downloaded a component from childhe.com and attempted to trick the victim into installing a fake anti-virus scanner from bestantispyware securityscan.com and protectionsoft warecheck.com," he explained.
It is thought this is the first time fraudsters had used real world solutions to try and trick users, although Mr Zeltser warned that it would not be the last.
"Attackers continue to come up with creative ways of tricking potential victims into installing malicious software.
"Merging physical and virtual worlds via objects that point to websites is one way to do this. I imagine we'll be seeing such approaches more often."
Human fraility is often the biggest problem to conquer in the world of Internet security. Corporate computer users should be educated as to the risks associated with visiting web sites unknown to them, especially those using corporate laptops when away from the office gateway internet filters.
Net-Ctrl partners with Encription - Ethical Hacking Services, who can perform tailored security audits to ascertain not only the strength of an Internet Gateway but also the way in which employees deal with requests for information. The results are usually deeply concerning.
