Slashdot Mirror
Web-Users Fall For Fake Anti-Virus Scams
jhernik writes "Fearing their computers may be prone to viruses, many web-users download fake anti-virus software, only to find later that their bank details have been hacked. According to the latest research by GetSafeOnline.org, the UK's national internet security initiative, a rising nunber of organised criminal gangs are tricking security-conscious intenet-users into purchasing anti-virus software to access their bank details. Posing as legitimate IT helpdesks, these fraudsters target internet users concerned about protecting their computers. By offering free virus checks, they normally tell consumers that their machines are infected and offer fake security software protection – usually costing around £30 – which is actually malicious software in disguise." The fact that there is such a thriving market for fake AV scams really says something about the present state of the legitimate AV market.
The thriving market for fake AV scams simply means people are too cheap to pay full price for a commercial AV scanner, or too stupid to find a legit free one. Computers are appliances to 90% of the world's population, and no other appliance requires expensive upgrades to determine if it's being misused. Even without a car alarm, you'll notice if your car isn't where you parked it, but a most infected computers don't advertise as such. People know they need an AV scanner, and hey, the computer just offered them one, "Score! No need to go shopping for one!" All viruses (that aren't autonomous worms) spread based on misplaced trust or greed, and getting a cheap AV scanner appeals to both instincts.
$_ = "wftedskaebjgdpjgidbsmnjgcdwatb"; tr/a-z/oh, turtleneck Phrase Jar!/; print
Nerds of the world, it is time to unite around a new cause. It is time to write, and release, a new virus that relies on a series of incredibly stupid attack vectors - the kinds of attack vectors that only a clueless dipshit would actually fall for. The virus has only one simple payload: it uninstalls all network drivers on the machine.
After several trips to get their machine "repaired," these folks will either wise up, or give up.
Who wants to join the crusade?
If libertarians are so opposed to effective government, why don't they all move to Somalia?
Seriously. This has been going on for YEARS. Why is this being posted here?
cue /. superiority complex... Seriously, rather than tag as !news or PEBKAC, how about some intelligent discussion about either educating the general public or another more intelligent solution?
You gotta give it to companies like McAffee, Symantec, etc... they know how to scare people into handing over money so they are "protected". It was only a matter of time before people started to copy their methods.
At the end of the day, the computer obeys what you tell it to do. If you tell it to do stupid shit, it's going to do stupid shit.
The fix for this problem is not technical, it is social.
This article really was an eye opener!
Who would have thought that a large percentage of windows users are not technically inclined and easily tricked by scary looking windows!
Rumour has it that scissors can be fairly sharp, and fire is damn hot sometimes.
Also.. _really_ old news. This scam has been around for at least a decade. It followed closely on the success of the "YOU HAvE ONE URGENT MESSAGE" banner ad.
It's already pretty damn easy to identify fake AV software. Just follow this simple flowchart:
Is it advertised through a popup or an unsolicited email? > Yes > It's a scam!
Simple! This works for all products, not just fake AV.
Colour me surprised.
I recently had to install Windows 7 at home, and decided to put Norton AV on my machine. I boot up on Windows roughly once every couple of weeks to run a specific application. So I notice Norton AV popping up loads of windows, running it's intrusive update process about bombarding me with scary looking crap prompting me to read about the "latest security threats from cyber-criminals". Hair-raising stuff, especially if you're not a computer specialist.
I'm an IT professional, and _I_ find this behaviour sleazy, unethical, annoying and slightly alarming. This is a product I paid GOOD MONEY FOR. I'm PAYING to be bullied, essentially.
So I can just imagine the average user being bullied and terrified by this crap... which is not only enriching the AV vendors, but also making regular folk like lambs to the slaughter for the forces of evil out there.
I'd say that the consumer, criminals and the AV companies are really inhabitants of one ecosystem: prey, parasites and predators respectively.
Most people are fucking idiots.
Obviously not news.
The people who really worry me are not the clueless dipshits, but the 50+ crowd who have never really used computers before, and through newly-acquired secondhand knowledge, now know just enough to be dangerous. I think they're probably the ones mostly in danger of falling for these scams. We need to keep our parents and grandparents educated and tell them just because a page shows up first in their Google search doesn't mean it's necessarily what they're looking for.
Most people are fucking idiots.
Not idiots, but ignorant. You can't blame them for that.
That's because these consumers know better than to trust anything free. "You get what you pay for", right?
Warning: this article may contain humor, sarcasm, parody, and perhaps even irony. Read at your own risk.
To be fair, it's not exactly easy to find a legit free AV programme. Downloading my poinson of choice, AVG, for example, requires you to navigate through the website, locate the tiny "free version" link on a series of pages, and wind through and around a whole lot of annoying screens designed to baffle/frustrate/bully you into buy a pay version.
And worse, you then have to go through this whole process again every six months when they release a new version that isn't covered by the auto updater.
I definitely consider the behaviour of companies like AVG to be partially responsible for people getting confused, frustrated, and resorting to less legitimate means.
Not idiots, but ignorant. You can't blame them for that.
Why shouldn't they be blamed? Why do we insist on creating a dumber world where nobody is responsible for their own actions?
The walled garden approach (eg apple) works well for average users...
Linux distros with trusted repositories are a good idea too, the average user still receives the protection of getting all their software from a known trusted source while advanced users still have the flexibility available.
End users should not have root or equivalent access, they should only be able to install software from trusted sources and should defer to a third party (either someone they know, or a paid service etc) for anything more advanced.
http://spamdecoy.net - free throwaway anonymous email - avoid spam!
So, you're going to train everyone, every time a new attack vector/ad/clickbomb comes around?
Rather than tell them not to bank online (Are you fucking kidding me?!?!), try telling them if they want to be secure and not have their bank info stolen/cleaned out, then don't use Windows/IE. Since that is what EVERY scam uses. You can argue that using other platforms will have this eventually, but no others do right now. You can argue that Windows is more secure than others, but no other OSes have this scam. You can argue that Windows is more common/well known/familiar, BUT NO OTHER OS HAS THESE SCAMS.
A car analogy: If the Crown Vic was a horribly unreliable car and could kill them if they used the turn signal wrong, you'd never let them buy it. Why would you let them get robbed by using Windows/IE?
There are two types of people in the world: Those who crave closure
For a new/elderly user, I submit to you that the correct answer is that they should not use a public terminal. That's just asking for trouble for even the most experienced of users.
This is I think the whole "browser as an application platform" thing we've had going for the last few years.
I know, I know, we need advances and you web programmer types can do some great things with your languages these days. But it's no longer just a browser at that point, is it? And when it gets to interact with the OS on various levels, and when there are holes (which there always are) bad things happen. The fact that web-apps and their multitude of up-popping windows can and do frequently look the same as messages from the OS is probably not a very good thing. I know, we can't stop people faking it with images, but IMHO some sort of inbuilt restrictions on the appearance of web-originating content vs local programs would be a good thing.
if they want to be secure and not have their bank info stolen/cleaned out, then don't use Windows/IE. Since that is what EVERY scam uses.
Seems to me that if a phish arrives at my email account, and I open it up using the default email client, and I click the http link that says "your banking details need to be updated", and I fill in all my personal financial information in the resulting web page ... I'm equally boned whether I'm using Windows, MacOS, or Linux.
Same goes for when a former Nigerian oil minister contacts me to assist with a large funds transfer. Some goes for any number of other social engineering scams that don't rely on any specific technology platform.
If libertarians are so opposed to effective government, why don't they all move to Somalia?
" ... Compound this with the MacAfee Heel: most OTS boxes come with MacAfee installed at least as a demo. ..."
You've inadvertently hit the nail on the head. The scam is simple and effective because it exploits human logic. I've noticed most /.'ers think that users are naive, or clueless, or worse, but they're missing the beauty of the scam because they can't think like a non-sophisticated user ... they're beyond it and don't have the same mindset anymore.
But, to get to the point, the PC comes pre-installed with some kind of AV, in demo mode. It works for a while, then times out or goes to some limited functionality. This is the AV vendor's only real means to get a license sold. I would bet that pretty much every user that falls for this scam has at least considered buying the demo up to full functionality, but balk at the cost.
Along comes Mr Fake AV. The user knows they have no or limited AV protection. They know everyone says they need some protection. The crooks know that all they have to do is price their scam SW lower than whatever McAffee (or whomever) wants for the demo to go licensed. McAffee has helped this transaction by setting the bar price-wise, and the scammer knows ALL the users have been exposed to the price via the demo, so he also knows ALL the users will see it as a bargain. Bingo. Hook, meet Line and Sinker.